Action not permitted
Modal body text goes here.
cve-2013-2461
Vulnerability from cvelistv5
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T15:36:46.518Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "name": "HPSBUX02908", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "name": "RHSA-2014:0414", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "name": "GLSA-201406-32", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "oval:org.mitre.oval:def:16887", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "name": "HPSBUX02907", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "name": "54154", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/54154" }, { "name": "oval:org.mitre.oval:def:19582", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" }, { "name": "oval:org.mitre.oval:def:19565", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": [ "mailing-list", "x_refsource_FULLDISC", "x_transferred" ], "url": "http://seclists.org/fulldisclosure/2014/Dec/23" }, { "name": "TA13-169A", "tags": [ "third-party-advisory", "x_refsource_CERT", "x_transferred" ], "url": "http://www.us-cert.gov/ncas/alerts/TA13-169A" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://advisories.mageia.org/MGASA-2013-0185.html" }, { "name": "RHSA-2013:0963", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0963.html" }, { "name": "60645", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/60645" }, { "name": "MDVSA-2013:183", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:183" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2013-06-18T00:00:00", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"" } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-10-09T18:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle" }, "references": [ { "tags": [ "x_refsource_MISC" ], "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "name": "HPSBUX02908", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "name": "RHSA-2014:0414", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "name": "GLSA-201406-32", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "oval:org.mitre.oval:def:16887", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "name": "HPSBUX02907", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "name": "54154", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/54154" }, { "name": "oval:org.mitre.oval:def:19582", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" }, { "name": "oval:org.mitre.oval:def:19565", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": [ "mailing-list", "x_refsource_FULLDISC" ], "url": "http://seclists.org/fulldisclosure/2014/Dec/23" }, { "name": "TA13-169A", "tags": [ "third-party-advisory", "x_refsource_CERT" ], "url": "http://www.us-cert.gov/ncas/alerts/TA13-169A" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://advisories.mageia.org/MGASA-2013-0185.html" }, { "name": "RHSA-2013:0963", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0963.html" }, { "name": "60645", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/60645" }, { "name": "MDVSA-2013:183", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:183" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-2461", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2", "refsource": "MISC", "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "name": "HPSBUX02908", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "name": "RHSA-2014:0414", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "oval:org.mitre.oval:def:16887", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "name": "HPSBUX02907", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "name": "54154", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/54154" }, { "name": "oval:org.mitre.oval:def:19582", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" }, { "name": "oval:org.mitre.oval:def:19565", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2014/Dec/23" }, { "name": "TA13-169A", "refsource": "CERT", "url": "http://www.us-cert.gov/ncas/alerts/TA13-169A" }, { "name": "http://advisories.mageia.org/MGASA-2013-0185.html", "refsource": "CONFIRM", "url": "http://advisories.mageia.org/MGASA-2013-0185.html" }, { "name": "RHSA-2013:0963", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0963.html" }, { "name": "60645", "refsource": "BID", "url": "http://www.securityfocus.com/bid/60645" }, { "name": "MDVSA-2013:183", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:183" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=975126", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" } ] } } } }, "cveMetadata": { "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2013-2461", "datePublished": "2013-06-18T22:00:00", "dateReserved": "2013-03-05T00:00:00", "dateUpdated": "2024-08-06T15:36:46.518Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2013-2461\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2013-06-18T22:55:02.727\",\"lastModified\":\"2022-05-13T14:35:27.090\",\"vulnStatus\":\"Analyzed\",\"evaluatorComment\":\"Per: http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html\\n\\n\u0027Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service.\u0027\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \\\"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\\\"\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE 7 Update 21 y versiones anteriores y 6 Update 45 y versiones anteriores; el componente Oracle JRockit en Oracle Fusion Middleware R27.7.5 y versiones anteriores y R28.2.7 y versiones anteriores; y OpenJDK 7 permite a atacantes remotos afectar a la confidencialidad, la integridad y la disponibilidad a trav\u00e9s de vectores desconocidos relacionados con Libraries. NOTA: la informaci\u00f3n anterior es de la CPU de Junio y Julio de 2013. Oracle no ha comentado sobre la reclamaci\u00f3n de otro vendedor que este problema permite a atacantes remotos eludir firmas de verificaci\u00f3n de XML a trav\u00e9s de vectores relacionados con \\\"Falta de verificaci\u00f3n de [un] algoritmo de canonicalizaci\u00f3n DOMCanonicalizationMethod v\u00e1lido\\\".\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":7.5},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"301E96A3-AD2F-48F3-9166-571BD6F9FAE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9215D9-DB64-4CEE-85E6-E247035EFB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"352509FE-54D9-4A59-98B7-96E5E98BC2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3EC13D3-4CE7-459C-A7D7-7D38C1284720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CDCD1B4-C5F3-4188-B05F-23922F7DE517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"1824DA2D-26D5-4595-8376-8E41AB8C5E52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"B72F78B7-10D1-49CF-AC4D-3B10921CB633\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"60D05860-9424-4727-B583-74A35BC9BDFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85DB431-FEA4-42E7-AC29-6B66174DCD9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB7E911C-C780-440A-ABFF-CCE09061BB4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"0381EE39-2F60-49FD-A63A-B9E81C9033CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AD75455-B7F0-4F42-98E7-CAA43787D606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BF0FD06-3953-49AB-A9AA-ACB6883E2D2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"62823E8E-99CF-40DB-B43E-CBA4E9A2F916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEA04B0D-D4E3-497D-9564-046B1CDA2342\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD3522AD-6CE5-43A3-A108-FBEEE4C226B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update41:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2F3B6EB-694F-44E9-9502-8487DCEC84BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update43:*:*:*:*:*:*\",\"matchCriteriaId\":\"1ED02C60-AD2E-4DAD-89DA-E978B6D6422A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"722A93D8-B5BC-42F3-92A2-E424F61269A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"775F2611-F11C-4B84-8F40-0D034B81BF18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"F20FDD9F-FF45-48BC-9207-54FB02E76071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA326F5-894A-4B01-BCA3-B126DA81CA59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"228AB7B4-4BA4-43D4-B562-D438884DB152\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFD5C688-2103-4D60-979E-D9BE69A989C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"21421215-F722-4207-A2E5-E2DF4B29859B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFB9EA23-0EF7-4582-A265-3F5AA9EC81B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C367B418-659E-4627-B1F1-1B1216C99055\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD5E6D4E-DDDD-4B45-B5E9-F8A916287AF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"7358492A-491C-491E-AEDF-63CB82619BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3DACAAF-AFDC-4391-9E85-344F30937F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"D98175BF-B084-4FA5-899D-9E80DC3923EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"820632CE-F8DF-47EE-B716-7530E60008B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA2BD0A3-7B2D-447B-ABAC-7B867B03B632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D54AB785-E9B7-47BD-B756-0C3A629D67DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9412098-0353-4F7B-9245-010557E6C651\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD30DAEB-4893-41CF-A455-B69C463B9337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*\",\"matchCriteriaId\":\"21D6CE7E-A036-496C-8E08-A87F62B5290A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8F93BBE-1E8C-4EB3-BCC7-20AB2D813F98\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C27372B-A091-46D5-AE39-A44BBB1D9EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B153FD-E20B-4909-8B10-884E48F5B590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"F21933FB-A27C-4AF3-9811-2DE28484A5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3C3C9C7-73AE-4B1D-AA85-C7F5330A4DE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D8BB8D7-D5EC-42D6-BEAA-CB03D1D6513E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"37B5B98B-0E41-4397-8AB0-C18C6F10AED1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5831D70B-3854-4CB8-B88D-40F1743DAEE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA302DF3-ABBB-4262-B206-4C0F7B5B1E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD8A54E-185B-4D34-82EF-C0C05739EC12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FFC7F0D-1F32-4235-8359-277CE41382DF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"r27.7.1\",\"versionEndIncluding\":\"r27.7.5\",\"matchCriteriaId\":\"5C8723BA-8042-4E0B-94D5-558137D289E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"r28.0.0\",\"versionEndIncluding\":\"r28.2.7\",\"matchCriteriaId\":\"3CCF03EA-0C82-4B39-A995-DBF760864191\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:openjdk:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"662D4C81-DD97-4A36-8F15-CCE6ADA6456E\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2013-0185.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0963.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2014/Dec/23\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/54154\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-201406-32.xml\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:183\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/archive/1/534161/100/0/threaded\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securityfocus.com/bid/60645\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.us-cert.gov/ncas/alerts/TA13-169A\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.vmware.com/security/advisories/VMSA-2014-0012.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2014:0414\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=975126\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Third Party Advisory\"]}]}}" } }
var-201306-0238
Vulnerability from variot
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a "Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.". The vulnerability can be exploited over multiple protocols. This issue affects the 'Libraries' sub-component. This vulnerability affects the following supported versions: 7 Update 21 , 6 Update 45. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201406-32
http://security.gentoo.org/
Severity: High Title: IcedTea JDK: Multiple vulnerabilities Date: June 29, 2014 Bugs: #312297, #330205, #340819, #346799, #352035, #353418, #354231, #355127, #370787, #387637, #404095, #421031, #429522, #433389, #438750, #442478, #457206, #458410, #461714, #466822, #477210, #489570, #508270 ID: 201406-32
Synopsis
Multiple vulnerabilities have been found in the IcedTea JDK, the worst of which could lead to arbitrary code execution.
Background
IcedTea is a distribution of the Java OpenJDK source code built with free build tools.
Affected packages
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-java/icedtea-bin < 6.1.13.3 >= 6.1.13.3
Description
Multiple vulnerabilities have been discovered in the IcedTea JDK. Please review the CVE identifiers referenced below for details.
Workaround
There is no known workaround at this time.
Resolution
All IcedTea JDK users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=dev-java/icedtea-bin-6.1.13.3"
References
[ 1 ] CVE-2009-3555 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3555 [ 2 ] CVE-2010-2548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2548 [ 3 ] CVE-2010-2783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2783 [ 4 ] CVE-2010-3541 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3541 [ 5 ] CVE-2010-3548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3548 [ 6 ] CVE-2010-3549 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3549 [ 7 ] CVE-2010-3551 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3551 [ 8 ] CVE-2010-3553 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3553 [ 9 ] CVE-2010-3554 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3554 [ 10 ] CVE-2010-3557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3557 [ 11 ] CVE-2010-3561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3561 [ 12 ] CVE-2010-3562 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3562 [ 13 ] CVE-2010-3564 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3564 [ 14 ] CVE-2010-3565 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3565 [ 15 ] CVE-2010-3566 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3566 [ 16 ] CVE-2010-3567 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3567 [ 17 ] CVE-2010-3568 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3568 [ 18 ] CVE-2010-3569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3569 [ 19 ] CVE-2010-3573 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3573 [ 20 ] CVE-2010-3574 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3574 [ 21 ] CVE-2010-3860 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3860 [ 22 ] CVE-2010-4351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4351 [ 23 ] CVE-2010-4448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4448 [ 24 ] CVE-2010-4450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4450 [ 25 ] CVE-2010-4465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4465 [ 26 ] CVE-2010-4467 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4467 [ 27 ] CVE-2010-4469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4469 [ 28 ] CVE-2010-4470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4470 [ 29 ] CVE-2010-4471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4471 [ 30 ] CVE-2010-4472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4472 [ 31 ] CVE-2010-4476 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4476 [ 32 ] CVE-2011-0025 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0025 [ 33 ] CVE-2011-0706 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0706 [ 34 ] CVE-2011-0815 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0815 [ 35 ] CVE-2011-0822 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0822 [ 36 ] CVE-2011-0862 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0862 [ 37 ] CVE-2011-0864 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0864 [ 38 ] CVE-2011-0865 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0865 [ 39 ] CVE-2011-0868 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0868 [ 40 ] CVE-2011-0869 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0869 [ 41 ] CVE-2011-0870 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0870 [ 42 ] CVE-2011-0871 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0871 [ 43 ] CVE-2011-0872 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0872 [ 44 ] CVE-2011-3389 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3389 [ 45 ] CVE-2011-3521 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3521 [ 46 ] CVE-2011-3544 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3544 [ 47 ] CVE-2011-3547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3547 [ 48 ] CVE-2011-3548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3548 [ 49 ] CVE-2011-3551 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3551 [ 50 ] CVE-2011-3552 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3552 [ 51 ] CVE-2011-3553 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3553 [ 52 ] CVE-2011-3554 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3554 [ 53 ] CVE-2011-3556 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3556 [ 54 ] CVE-2011-3557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3557 [ 55 ] CVE-2011-3558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3558 [ 56 ] CVE-2011-3560 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3560 [ 57 ] CVE-2011-3563 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563 [ 58 ] CVE-2011-3571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3571 [ 59 ] CVE-2011-5035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035 [ 60 ] CVE-2012-0497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497 [ 61 ] CVE-2012-0501 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501 [ 62 ] CVE-2012-0502 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502 [ 63 ] CVE-2012-0503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503 [ 64 ] CVE-2012-0505 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505 [ 65 ] CVE-2012-0506 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506 [ 66 ] CVE-2012-0547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547 [ 67 ] CVE-2012-1711 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711 [ 68 ] CVE-2012-1713 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713 [ 69 ] CVE-2012-1716 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716 [ 70 ] CVE-2012-1717 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717 [ 71 ] CVE-2012-1718 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718 [ 72 ] CVE-2012-1719 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719 [ 73 ] CVE-2012-1723 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723 [ 74 ] CVE-2012-1724 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724 [ 75 ] CVE-2012-1725 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725 [ 76 ] CVE-2012-1726 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726 [ 77 ] CVE-2012-3216 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216 [ 78 ] CVE-2012-3422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3422 [ 79 ] CVE-2012-3423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3423 [ 80 ] CVE-2012-4416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416 [ 81 ] CVE-2012-4540 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4540 [ 82 ] CVE-2012-5068 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068 [ 83 ] CVE-2012-5069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069 [ 84 ] CVE-2012-5070 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070 [ 85 ] CVE-2012-5071 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071 [ 86 ] CVE-2012-5072 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072 [ 87 ] CVE-2012-5073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073 [ 88 ] CVE-2012-5074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074 [ 89 ] CVE-2012-5075 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075 [ 90 ] CVE-2012-5076 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076 [ 91 ] CVE-2012-5077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077 [ 92 ] CVE-2012-5081 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081 [ 93 ] CVE-2012-5084 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084 [ 94 ] CVE-2012-5085 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085 [ 95 ] CVE-2012-5086 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086 [ 96 ] CVE-2012-5087 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087 [ 97 ] CVE-2012-5089 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089 [ 98 ] CVE-2012-5979 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5979 [ 99 ] CVE-2013-0169 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169 [ 100 ] CVE-2013-0401 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401 [ 101 ] CVE-2013-0424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0424 [ 102 ] CVE-2013-0425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0425 [ 103 ] CVE-2013-0426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0426 [ 104 ] CVE-2013-0427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0427 [ 105 ] CVE-2013-0428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0428 [ 106 ] CVE-2013-0429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0429 [ 107 ] CVE-2013-0431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0431 [ 108 ] CVE-2013-0432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0432 [ 109 ] CVE-2013-0433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0433 [ 110 ] CVE-2013-0434 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0434 [ 111 ] CVE-2013-0435 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0435 [ 112 ] CVE-2013-0440 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0440 [ 113 ] CVE-2013-0441 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0441 [ 114 ] CVE-2013-0442 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0442 [ 115 ] CVE-2013-0443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0443 [ 116 ] CVE-2013-0444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0444 [ 117 ] CVE-2013-0450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0450 [ 118 ] CVE-2013-0809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809 [ 119 ] CVE-2013-1475 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1475 [ 120 ] CVE-2013-1476 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1476 [ 121 ] CVE-2013-1478 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1478 [ 122 ] CVE-2013-1480 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1480 [ 123 ] CVE-2013-1484 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484 [ 124 ] CVE-2013-1485 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485 [ 125 ] CVE-2013-1486 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486 [ 126 ] CVE-2013-1488 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488 [ 127 ] CVE-2013-1493 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493 [ 128 ] CVE-2013-1500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500 [ 129 ] CVE-2013-1518 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518 [ 130 ] CVE-2013-1537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537 [ 131 ] CVE-2013-1557 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557 [ 132 ] CVE-2013-1569 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569 [ 133 ] CVE-2013-1571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571 [ 134 ] CVE-2013-2383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383 [ 135 ] CVE-2013-2384 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384 [ 136 ] CVE-2013-2407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407 [ 137 ] CVE-2013-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412 [ 138 ] CVE-2013-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415 [ 139 ] CVE-2013-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417 [ 140 ] CVE-2013-2419 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419 [ 141 ] CVE-2013-2420 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420 [ 142 ] CVE-2013-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421 [ 143 ] CVE-2013-2422 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422 [ 144 ] CVE-2013-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423 [ 145 ] CVE-2013-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424 [ 146 ] CVE-2013-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426 [ 147 ] CVE-2013-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429 [ 148 ] CVE-2013-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430 [ 149 ] CVE-2013-2431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431 [ 150 ] CVE-2013-2436 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436 [ 151 ] CVE-2013-2443 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443 [ 152 ] CVE-2013-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444 [ 153 ] CVE-2013-2445 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445 [ 154 ] CVE-2013-2446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446 [ 155 ] CVE-2013-2447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447 [ 156 ] CVE-2013-2448 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448 [ 157 ] CVE-2013-2449 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449 [ 158 ] CVE-2013-2450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450 [ 159 ] CVE-2013-2451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451 [ 160 ] CVE-2013-2452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452 [ 161 ] CVE-2013-2453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453 [ 162 ] CVE-2013-2454 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454 [ 163 ] CVE-2013-2455 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455 [ 164 ] CVE-2013-2456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456 [ 165 ] CVE-2013-2457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457 [ 166 ] CVE-2013-2458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458 [ 167 ] CVE-2013-2459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459 [ 168 ] CVE-2013-2460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460 [ 169 ] CVE-2013-2461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461 [ 170 ] CVE-2013-2463 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463 [ 171 ] CVE-2013-2465 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465 [ 172 ] CVE-2013-2469 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469 [ 173 ] CVE-2013-2470 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470 [ 174 ] CVE-2013-2471 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471 [ 175 ] CVE-2013-2472 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472 [ 176 ] CVE-2013-2473 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473 [ 177 ] CVE-2013-3829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829 [ 178 ] CVE-2013-4002 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4002 [ 179 ] CVE-2013-5772 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772 [ 180 ] CVE-2013-5774 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774 [ 181 ] CVE-2013-5778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778 [ 182 ] CVE-2013-5780 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780 [ 183 ] CVE-2013-5782 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782 [ 184 ] CVE-2013-5783 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783 [ 185 ] CVE-2013-5784 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784 [ 186 ] CVE-2013-5790 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790 [ 187 ] CVE-2013-5797 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797 [ 188 ] CVE-2013-5800 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800 [ 189 ] CVE-2013-5802 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802 [ 190 ] CVE-2013-5803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803 [ 191 ] CVE-2013-5804 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804 [ 192 ] CVE-2013-5805 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805 [ 193 ] CVE-2013-5806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806 [ 194 ] CVE-2013-5809 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809 [ 195 ] CVE-2013-5814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814 [ 196 ] CVE-2013-5817 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817 [ 197 ] CVE-2013-5820 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820 [ 198 ] CVE-2013-5823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823 [ 199 ] CVE-2013-5825 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825 [ 200 ] CVE-2013-5829 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829 [ 201 ] CVE-2013-5830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830 [ 202 ] CVE-2013-5840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840 [ 203 ] CVE-2013-5842 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842 [ 204 ] CVE-2013-5849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849 [ 205 ] CVE-2013-5850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850 [ 206 ] CVE-2013-5851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851 [ 207 ] CVE-2013-6629 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6629 [ 208 ] CVE-2013-6954 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6954 [ 209 ] CVE-2014-0429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0429 [ 210 ] CVE-2014-0446 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0446 [ 211 ] CVE-2014-0451 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0451 [ 212 ] CVE-2014-0452 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0452 [ 213 ] CVE-2014-0453 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0453 [ 214 ] CVE-2014-0456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0456 [ 215 ] CVE-2014-0457 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0457 [ 216 ] CVE-2014-0458 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0458 [ 217 ] CVE-2014-0459 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0459 [ 218 ] CVE-2014-0460 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0460 [ 219 ] CVE-2014-0461 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0461 [ 220 ] CVE-2014-1876 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1876 [ 221 ] CVE-2014-2397 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2397 [ 222 ] CVE-2014-2398 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2398 [ 223 ] CVE-2014-2403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2403 [ 224 ] CVE-2014-2412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2412 [ 225 ] CVE-2014-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2414 [ 226 ] CVE-2014-2421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2421 [ 227 ] CVE-2014-2423 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2423 [ 228 ] CVE-2014-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2427
Availability
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-201406-32.xml
Concerns?
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License
Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5 . (CVE-2013-2412)
It was discovered that GnomeFileTypeDetector did not check for read permissions when accessing files.
This erratum also upgrades the OpenJDK package to IcedTea7 2.3.10. Refer to the NEWS file, linked to in the References, for further information. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
APPLE-SA-2013-06-18-1 Java for OS X 2013-004 and Mac OS X v10.6 Update 16
Java for OS X 2013-004 and Mac OS X v10.6 Update 16 is now available and addresses the following:
Java Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7 or later, OS X Lion Server v10.7 or later, OS X Mountain Lion 10.8 or later Impact: Multiple vulnerabilities in Java 1.6.0_45 Description: 8011782 Multiple vulnerabilities existed in Java 1.6.0_45, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. These issues were addressed by updating to Java version 1.6.0_51. Further information is available via the Java website at ht tp://www.oracle.com/technetwork/java/javase/releasenotes-136954.html CVE-ID CVE-2013-1500 CVE-2013-1571 CVE-2013-2407 CVE-2013-2412 CVE-2013-2437 CVE-2013-2442 CVE-2013-2443 CVE-2013-2444 CVE-2013-2445 CVE-2013-2446 CVE-2013-2447 CVE-2013-2448 CVE-2013-2450 CVE-2013-2451 CVE-2013-2452 CVE-2013-2453 CVE-2013-2454 CVE-2013-2455 CVE-2013-2456 CVE-2013-2457 CVE-2013-2459 CVE-2013-2461 CVE-2013-2463 CVE-2013-2464 CVE-2013-2465 CVE-2013-2466 CVE-2013-2468 CVE-2013-2469 CVE-2013-2470 CVE-2013-2471 CVE-2013-2472 CVE-2013-2473 CVE-2013-3743 CVE_2013-2445
Java for OS X 2013-004 and Mac OS X v10.6 Update 16 may be obtained from the Software Update pane in System Preferences, Mac App Store, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/
For Mac OS X v10.6 systems The download file is named: JavaForMacOSX10.6.Update16.dmg Its SHA-1 digest is: a6b5a9caa3c0d9acf743da8e4c0e5cfe4e471b01
For OS X Lion and Mountain Lion systems The download file is named: JavaForOSX2013-004.dmg Its SHA-1 digest is: 153c3f74d5285d10008fce2004d904da8d2ffdff
Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222
This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org
iQIcBAEBAgAGBQJRwL5AAAoJEPefwLHPlZEwju0QALM1IST/ATt2xR1L0AQcaZRX eiM07MlvAlE9Jv45xqKLUezRU8XQT6+glN51/hBhpyCa8MJIzPiSnnOIAW+vbA5o RjXQTGPGT1IPSfEk7OWS++566riMLmTOvg45Qn0E/ibOqJHpfrR4wzQX5jpv7lzH EbdKxn+KWfHCF2y/2LCFifDHUBPCjUlbWTRznDCYVHsFbtDiP/vAZiSXsNJtLTXK UOD/eGbel2PEqWOOsUNIrzwvztRB+LsYT4xKQQnsEKJqoyMch/UgB1Uo2jgEPn0U YP3WZbjbDV+UcM+yMoCV/qDFhbJ+qBxTbuwYOHuSDpgqJ7vF8s0cdUUb6U7QLW4/ 3ykC7vOUS/JqYkiqwUxuKVpzSUYXrlez36sQuwCR9AOGCJ/0/MwM8QPavFAdGisP 36ZavJ4k2Dp2CfVmWjexpWY7XN9M36Lh57XChxQk9TcbjUJRrqNadlPyzaja3G9a 95Dq1N1dYfLuFm4MtyeDA0xQl8m8ljnSxH3TQoDcTwvvWGIGdG7EEVpdQqM/MTWY CY2EqMkY3Gouet+QvECYwxOz+g0hcaJd973kSM+5AJ7tVfod93NDW3P13k2cfdTC uo9IgGkhuNY40NuLpJLtTwlHcTCwBtKPt0BLwXugZdoDrgz1j8Q+fLuASSTkUQxl 3t9MUCG40o5ZQFyWqV1+ =zFXN -----END PGP SIGNATURE----- . Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page, listed in the References section. ============================================================================ Ubuntu Security Notice USN-1907-2 July 16, 2013
icedtea-web update
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04 LTS
Summary:
IcedTea Web updated to work with new OpenJDK 7.
Software Description: - icedtea-web: A web browser plugin to execute Java applets
Details:
USN-1907-1 fixed vulnerabilities in OpenJDK 7. Due to upstream changes, IcedTea Web needed an update to work with the new OpenJDK 7.
Original advisory details:
Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure and data integrity. (CVE-2013-1500, CVE-2013-2454, CVE-2013-2458)
A vulnerability was discovered in the OpenJDK Javadoc related to data integrity. (CVE-2013-1571)
A vulnerability was discovered in the OpenJDK JRE related to information disclosure and availability. (CVE-2013-2412, CVE-2013-2443, CVE-2013-2446, CVE-2013-2447, CVE-2013-2449, CVE-2013-2452, CVE-2013-2456)
Several vulnerabilities were discovered in the OpenJDK JRE related to availability. (CVE-2013-2448, CVE-2013-2451, CVE-2013-2459, CVE-2013-2460, CVE-2013-2461, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, CVE-2013-2473)
Several vulnerabilities were discovered in the OpenJDK JRE related to data integrity. (CVE-2013-2453, CVE-2013-2455, CVE-2013-2457)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 13.04: icedtea-netx 1.3.2-1ubuntu1.1
Ubuntu 12.10: icedtea-netx 1.3.2-1ubuntu0.12.10.2
Ubuntu 12.04 LTS: icedtea-netx 1.2.3-0ubuntu0.12.04.3
After a standard system update you need to restart your browser to make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Important: java-1.6.0-openjdk security update Advisory ID: RHSA-2013:1014-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2013-1014.html Issue date: 2013-07-03 CVE Names: CVE-2013-1500 CVE-2013-1571 CVE-2013-2407 CVE-2013-2412 CVE-2013-2443 CVE-2013-2444 CVE-2013-2445 CVE-2013-2446 CVE-2013-2447 CVE-2013-2448 CVE-2013-2450 CVE-2013-2452 CVE-2013-2453 CVE-2013-2455 CVE-2013-2456 CVE-2013-2457 CVE-2013-2459 CVE-2013-2461 CVE-2013-2463 CVE-2013-2465 CVE-2013-2469 CVE-2013-2470 CVE-2013-2471 CVE-2013-2472 CVE-2013-2473 =====================================================================
- Summary:
Updated java-1.6.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5 and 6.
The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux (v. 5 server) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64
- Description:
These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit.
Multiple flaws were discovered in the ImagingLib and the image attribute, channel, layout and raster processing in the 2D component. An untrusted Java application or applet could possibly use these flaws to trigger Java Virtual Machine memory corruption. (CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, CVE-2013-2473, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469)
Integer overflow flaws were found in the way AWT processed certain input. An attacker could use these flaws to execute arbitrary code with the privileges of the user running an untrusted Java applet or application. (CVE-2013-2459)
Multiple improper permission check issues were discovered in the Sound and JMX components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. (CVE-2013-2448, CVE-2013-2457, CVE-2013-2453)
Multiple flaws in the Serialization, Networking, Libraries and CORBA components can be exploited by an untrusted Java application or applet to gain access to potentially sensitive information. (CVE-2013-2456, CVE-2013-2447, CVE-2013-2455, CVE-2013-2452, CVE-2013-2443, CVE-2013-2446)
It was discovered that the Hotspot component did not properly handle out-of-memory errors. An untrusted Java application or applet could possibly use these flaws to terminate the Java Virtual Machine. (CVE-2013-2445)
It was discovered that the AWT component did not properly manage certain resources and that the ObjectStreamClass of the Serialization component did not properly handle circular references. An untrusted Java application or applet could possibly use these flaws to cause a denial of service. (CVE-2013-2444, CVE-2013-2450)
It was discovered that the Libraries component contained certain errors related to XML security and the class loader. A remote attacker could possibly exploit these flaws to bypass intended security mechanisms or disclose potentially sensitive information and cause a denial of service. (CVE-2013-2407, CVE-2013-2461)
It was discovered that JConsole did not properly inform the user when establishing an SSL connection failed. An attacker could exploit this flaw to gain access to potentially sensitive information. (CVE-2013-2412)
It was found that documentation generated by Javadoc was vulnerable to a frame injection attack. If such documentation was accessible over a network, and a remote attacker could trick a user into visiting a specially-crafted URL, it would lead to arbitrary web content being displayed next to the documentation. This could be used to perform a phishing attack by providing frame content that spoofed a login form on the site hosting the vulnerable documentation. (CVE-2013-1571)
It was discovered that the 2D component created shared memory segments with insecure permissions. A local attacker could use this flaw to read or write to the shared memory segment. (CVE-2013-1500)
Red Hat would like to thank US-CERT for reporting CVE-2013-1571, and Tim Brown for reporting CVE-2013-1500. US-CERT acknowledges Oracle as the original reporter of CVE-2013-1571.
All users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve these issues. All running instances of OpenJDK Java must be restarted for the update to take effect.
- Solution:
Before applying this update, make sure all previously released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258
- Bugs fixed (http://bugzilla.redhat.com/):
973474 - CVE-2013-1571 OpenJDK: Frame injection in generated HTML (Javadoc, 8012375) 975099 - CVE-2013-2470 OpenJDK: ImagingLib byte lookup processing (2D, 8011243) 975102 - CVE-2013-2471 OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248) 975107 - CVE-2013-2472 OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253) 975110 - CVE-2013-2473 OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257) 975115 - CVE-2013-2463 OpenJDK: Incorrect image attribute verification (2D, 8012438) 975118 - CVE-2013-2465 OpenJDK: Incorrect image channel verification (2D, 8012597) 975120 - CVE-2013-2469 OpenJDK: Incorrect image layout verification (2D, 8012601) 975121 - CVE-2013-2459 OpenJDK: Various AWT integer overflow checks (AWT, 8009071) 975124 - CVE-2013-2445 OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805) 975125 - CVE-2013-2448 OpenJDK: Better access restrictions (Sound, 8006328) 975126 - CVE-2013-2461 OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281) 975127 - CVE-2013-2407 OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744) 975131 - CVE-2013-2444 OpenJDK: Resource denial of service (AWT, 8001038) 975132 - CVE-2013-2446 OpenJDK: output stream access restrictions (CORBA, 8000642) 975133 - CVE-2013-2457 OpenJDK: Proper class checking (JMX, 8008120) 975134 - CVE-2013-2453 OpenJDK: MBeanServer Introspector package access (JMX, 8008124) 975137 - CVE-2013-2443 OpenJDK: AccessControlContext check order issue (Libraries, 8001330) 975138 - CVE-2013-2452 OpenJDK: Unique VMIDs (Libraries, 8001033) 975139 - CVE-2013-2455 OpenJDK: getEnclosing* checks (Libraries, 8007812) 975140 - CVE-2013-2447 OpenJDK: Prevent revealing the local address (Networking, 8001318) 975141 - CVE-2013-2450 OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638) 975142 - CVE-2013-2456 OpenJDK: ObjectOutputStream access checks (Serialization, 8008132) 975144 - CVE-2013-2412 OpenJDK: JConsole SSL support (Serviceability, 8003703) 975148 - CVE-2013-1500 OpenJDK: Insecure shared memory permissions (2D, 8001034)
- Package List:
Red Hat Enterprise Linux Desktop (v. 5 client):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.src.rpm
i386: java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm
x86_64: java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm
Red Hat Enterprise Linux (v. 5 server):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.src.rpm
i386: java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm java-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm
x86_64: java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm
Red Hat Enterprise Linux Desktop (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
i386: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm
x86_64: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux Desktop Optional (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
i386: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm
x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux HPC Node (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
x86_64: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux HPC Node Optional (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux Server (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
i386: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm
x86_64: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux Server Optional (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
i386: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm
x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux Workstation (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
i386: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm
x86_64: java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
Red Hat Enterprise Linux Workstation Optional (v. 6):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm
i386: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm
x86_64: java-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2013-1500.html https://www.redhat.com/security/data/cve/CVE-2013-1571.html https://www.redhat.com/security/data/cve/CVE-2013-2407.html https://www.redhat.com/security/data/cve/CVE-2013-2412.html https://www.redhat.com/security/data/cve/CVE-2013-2443.html https://www.redhat.com/security/data/cve/CVE-2013-2444.html https://www.redhat.com/security/data/cve/CVE-2013-2445.html https://www.redhat.com/security/data/cve/CVE-2013-2446.html https://www.redhat.com/security/data/cve/CVE-2013-2447.html https://www.redhat.com/security/data/cve/CVE-2013-2448.html https://www.redhat.com/security/data/cve/CVE-2013-2450.html https://www.redhat.com/security/data/cve/CVE-2013-2452.html https://www.redhat.com/security/data/cve/CVE-2013-2453.html https://www.redhat.com/security/data/cve/CVE-2013-2455.html https://www.redhat.com/security/data/cve/CVE-2013-2456.html https://www.redhat.com/security/data/cve/CVE-2013-2457.html https://www.redhat.com/security/data/cve/CVE-2013-2459.html https://www.redhat.com/security/data/cve/CVE-2013-2461.html https://www.redhat.com/security/data/cve/CVE-2013-2463.html https://www.redhat.com/security/data/cve/CVE-2013-2465.html https://www.redhat.com/security/data/cve/CVE-2013-2469.html https://www.redhat.com/security/data/cve/CVE-2013-2470.html https://www.redhat.com/security/data/cve/CVE-2013-2471.html https://www.redhat.com/security/data/cve/CVE-2013-2472.html https://www.redhat.com/security/data/cve/CVE-2013-2473.html https://access.redhat.com/security/updates/classification/#important
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)
iD8DBQFR1FwzXlSAg2UNWIIRAr2aAJ9j03lh/R8goDWLLqCz9VdH4bM1jACgkYVl x3jKc8cs/WwK8V5nIG2hJ0Q= =LPQe -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03874547
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03874547 Version: 1
HPSBUX02908 rev.1 - HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2013-07-31 Last Updated: 2013-07-31
Potential Security Impact: Remote unauthorized access, disclosure of information, and other vulnerabilities
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in the Java Runtime Environment (JRE) and the Java Developer Kit (JDK) running on HP-UX. HP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE v6.0.19 and earlier.
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2013-1500 (AV:L/AC:L/Au:N/C:P/I:P/A:N) 3.6 CVE-2013-1571 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-2407 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4 CVE-2013-2412 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2433 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-2437 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2442 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2013-2444 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-2445 (AV:N/AC:L/Au:N/C:N/I:N/A:C) 7.8 CVE-2013-2446 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2447 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2448 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-2450 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-2451 (AV:L/AC:H/Au:N/C:P/I:P/A:P) 3.7 CVE-2013-2452 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2453 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-2454 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8 CVE-2013-2455 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2456 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2457 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-2459 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2461 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2013-2463 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2464 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2465 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2466 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2468 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2469 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2470 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2471 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2472 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2473 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-3743 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following Java version upgrade to resolve these vulnerabilities.
The upgrade is available from the following location
http://www.hp.com/java
OS Version Release Version
HP-UX B.11.11, B.11.23, B.11.31 JDK and JRE v6.0.20 or subsequent
MANUAL ACTIONS: Yes - Update For Java v6.0 update to Java v6.0.20 or subsequent PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.11 HP-UX B.11.23 =========== Jdk60.JDK60-COM Jdk60.JDK60-PA20 Jdk60.JDK60-PA20W Jre60.JRE60-COM Jre60.JRE60-COM-DOC Jre60.JRE60-PA20 Jre60.JRE60-PA20-HS Jre60.JRE60-PA20W Jre60.JRE60-PA20W-HS Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.20.00 or subsequent
HP-UX B.11.23 HP-UX B.11.31 =========== Jdk60.JDK60-COM Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.20.00 or subsequent
END AFFECTED VERSIONS
HISTORY Version:1 (rev.1) - 31 July 2013 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2013 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-201306-0238", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "jrockit", "scope": "gte", "trust": 1.0, "vendor": "oracle", "version": "r27.7.1" }, { "model": "jrockit", "scope": "gte", "trust": 1.0, "vendor": "oracle", "version": "r28.0.0" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.6.0" }, { "model": "jrockit", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "r27.7.5" }, { "model": "jrockit", "scope": "lte", "trust": 1.0, "vendor": "oracle", "version": "r28.2.7" }, { "model": "jdk", "scope": "eq", "trust": 1.0, "vendor": "sun", "version": "1.6.0" }, { "model": "jre", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "openjdk", "scope": "eq", "trust": 1.0, "vendor": "oracle", "version": "1.7.0" }, { "model": "jre 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 13", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 12", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 07", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jre", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.7" }, { "model": "jre 1.6.0 21", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 19", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 18", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 15", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 14", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 11", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 03", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 02", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 01", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 17", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 14", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 13", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 11", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 10", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 07", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 06", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 05", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 04", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk", "scope": "eq", "trust": 0.9, "vendor": "sun", "version": "1.6" }, { "model": "jdk 1.6.0 21", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 20", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 19", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 18", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 15", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 03", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 02", "scope": null, "trust": 0.9, "vendor": "sun", "version": null }, { "model": "jre 1.7.0 9", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 8", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 17", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 13", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 11", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 10", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 43", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 39", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 38", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 45", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 7", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 4", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 2", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 35", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 32", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 30", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 28", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 27", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 26", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 25", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 24", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 23", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 22", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 9", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 8", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 21", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 13", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 12", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 11", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 10", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 45", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 43", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 39", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 37", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk", "scope": "eq", "trust": 0.9, "vendor": "oracle", "version": "1.7" }, { "model": "jdk 1.7.0 7", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 4", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 2", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 38", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 35", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 32", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 30", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 28", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 27", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 26", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 25", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 24", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 23", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jdk 1.6.0 22", "scope": null, "trust": 0.9, "vendor": "oracle", "version": null }, { "model": "jre 1.6.0 20", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jre 1.6.0 2", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 1.6.0 01", "scope": null, "trust": 0.6, "vendor": "sun", "version": null }, { "model": "jdk 01-b06", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "1.6" }, { "model": "jre 1.7.0 12", "scope": null, "trust": 0.6, "vendor": "oracle", "version": null }, { "model": "jre 1.7.0 21", "scope": null, "trust": 0.6, "vendor": "oracle", "version": null }, { "model": "jdk 1.7.0 17", "scope": null, "trust": 0.6, "vendor": "oracle", "version": null }, { "model": "freeflow print server 93.e0.21c", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "freeflow print server 91.d2.32", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "freeflow print server 82.d1.44", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "freeflow print server 81.d0.73", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "freeflow print server 73.d2.33", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "freeflow print server 73.c5.11", "scope": null, "trust": 0.3, "vendor": "xerox", "version": null }, { "model": "linux lts", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "12.04" }, { "model": "linux lts", "scope": "eq", "trust": 0.3, "vendor": "ubuntu", "version": "10.04" }, { "model": "linux enterprise desktop sp3", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "linux enterprise desktop sp2", "scope": "eq", "trust": 0.3, "vendor": "suse", "version": "11" }, { "model": "jdk 1.6.0 01-b06", "scope": null, "trust": 0.3, "vendor": "sun", "version": null }, { "model": "jdk 01", "scope": "eq", "trust": 0.3, "vendor": "sun", "version": "1.6" }, { "model": "trio tview software", "scope": "eq", "trust": 0.3, "vendor": "schneider electric", "version": "3.27.0" }, { "model": "opensuse", "scope": "eq", "trust": 0.3, "vendor": "s u s e", "version": "11.4" }, { "model": "enterprise linux workstation supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux workstation optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux workstation", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux supplementary server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "enterprise linux server supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux server optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux server eus 6.5.z", "scope": null, "trust": 0.3, "vendor": "redhat", "version": null }, { "model": "enterprise linux server aus", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6.5" }, { "model": "enterprise linux server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux hpc node supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux hpc node optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux hpc node", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop supplementary", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop supplementary client", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "enterprise linux desktop optional", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "6" }, { "model": "enterprise linux desktop client", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "enterprise linux server", "scope": "eq", "trust": 0.3, "vendor": "redhat", "version": "5" }, { "model": "jrockit r28.2.7", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r28.2.6", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r28.2.4", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r28.2.2", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r27.7.5", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r27.7.4", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r27.7.3", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "jrockit r27.7.1", "scope": null, "trust": 0.3, "vendor": "oracle", "version": null }, { "model": "enterprise linux", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "6.2" }, { "model": "enterprise linux", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "6" }, { "model": "enterprise linux", "scope": "eq", "trust": 0.3, "vendor": "oracle", "version": "5" }, { "model": "business server", "scope": "eq", "trust": 0.3, "vendor": "mandriva", "version": "1x8664" }, { "model": "business server", "scope": "eq", "trust": 0.3, "vendor": "mandriva", "version": "1" }, { "model": "enterprise server x86 64", "scope": "eq", "trust": 0.3, "vendor": "mandrakesoft", "version": "5" }, { "model": "enterprise server", "scope": "eq", "trust": 0.3, "vendor": "mandrakesoft", "version": "5" }, { "model": "nsmexpress", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": null }, { "model": "nsm3000", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": null }, { "model": "network and security manager software r8", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software r7", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software r6", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software r5", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software r4", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software r3", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software r2", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2" }, { "model": "network and security manager software", "scope": "eq", "trust": 0.3, "vendor": "juniper", "version": "2012.2-" }, { "model": "virtualization engine ts7700", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "0" }, { "model": "tivoli provisioning manager", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.1" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.3.0.1" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.3.0" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.0.2" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.0.1" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.0" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0.2" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0.1" }, { "model": "tivoli composite application manager for transactions", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.0" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.8" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.7" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.6" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.5" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.4" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.3" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.2" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2.1" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.5" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.2" }, { "model": "maximo asset management", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.0" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.5" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.4" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.0.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.6" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.5" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.4" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.3" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.2" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.1" }, { "model": "lotus notes", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.4" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.3" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.2" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "9.0" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.1.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.5.0.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.4" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.3" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.2" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0.2.1" }, { "model": "lotus domino", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "8.0" }, { "model": "java se", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java se", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java se", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6" }, { "model": "java se", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java sdk", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "java sdk sr4-fp2", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java sdk", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java sdk sr5-fp2", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.0.1" }, { "model": "java sdk sr13-fp2", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6" }, { "model": "java sdk", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6" }, { "model": "java sdk sr16-fp2", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java sdk", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "5" }, { "model": "java sdk sr13-fp17", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" }, { "model": "i v5r4", "scope": null, "trust": 0.3, "vendor": "ibm", "version": null }, { "model": "i", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "7.1" }, { "model": "i", "scope": "eq", "trust": 0.3, "vendor": "ibm", "version": "6.1" }, { "model": "hp-ux b.11.31", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "hp-ux b.11.11", "scope": null, "trust": 0.3, "vendor": "hp", "version": null }, { "model": "ucosminexus service platform", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "8" }, { "model": "ucosminexus service architect", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "8" }, { "model": "ucosminexus operator", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "8" }, { "model": "ucosminexus developer", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-00" }, { "model": "ucosminexus client", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "8" }, { "model": "ucosminexus application server", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "09-00" }, { "model": "cosminexus studio", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "5" }, { "model": "cosminexus studio", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "4.0" }, { "model": "cosminexus server web edition", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "-4" }, { "model": "cosminexus server standard edition", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "-4" }, { "model": "cosminexus developer", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6.0" }, { "model": "cosminexus developer", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "5" }, { "model": "cosminexus client", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6" }, { "model": "cosminexus application server", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "6.0" }, { "model": "cosminexus application server", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "5.0" }, { "model": "cosminexus", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "9.0" }, { "model": "cosminexus", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "8.0" }, { "model": "cosminexus", "scope": "eq", "trust": 0.3, "vendor": "hitachi", "version": "7.0" }, { "model": "linux", "scope": null, "trust": 0.3, "vendor": "gentoo", "version": null }, { "model": "linux sparc", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux s/390", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux powerpc", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux mips", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux ia-64", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux ia-32", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux arm", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "linux amd64", "scope": "eq", "trust": 0.3, "vendor": "debian", "version": "6.0" }, { "model": "centos", "scope": "eq", "trust": 0.3, "vendor": "centos", "version": "6" }, { "model": "centos", "scope": "eq", "trust": 0.3, "vendor": "centos", "version": "5" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1.3" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1.2" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1.1" }, { "model": "voice portal sp3", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "voice portal sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "voice portal sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "voice portal sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "voice portal sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "voice portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "proactive contact", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "proactive contact", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "one-x client enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "messaging application server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "message networking", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.0" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.1" }, { "model": "meeting exchange", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.0" }, { "model": "ir", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "4.0" }, { "model": "ip office application server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "8.1" }, { "model": "ip office application server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "8.0" }, { "model": "conferencing standard edition", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "conferencing standard edition sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "conferencing standard edition", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "communication server 1000m signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "communication server 1000m signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "communication server 1000m signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "communication server 1000m", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "communication server 1000m", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "communication server 1000m", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "communication server 1000e signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "communication server 1000e signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "communication server 1000e signaling server", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "communication server 1000e", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.5" }, { "model": "communication server 1000e", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "communication server 1000e", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "cms r17", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "cms r16.3", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "cms r16", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "cms r15", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "call management system r17.0", "scope": null, "trust": 0.3, "vendor": "avaya", "version": null }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.2" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.1.0.9" }, { "model": "aura system platform sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.3.9.3" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.3.8.3" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.3.0.3" }, { "model": "aura system platform sp3", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura system platform sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "1.1" }, { "model": "aura system platform", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "1.0" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "aura system manager sp3", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.5" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.3" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "aura system manager sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura system manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura system manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura sip enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "aura sip enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.1" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.5" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.3" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.2" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura session manager sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "aura session manager sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura session manager sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura session manager", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "aura presence services sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura presence services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "aura messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura experience portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.2" }, { "model": "aura experience portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0.1" }, { "model": "aura experience portal sp2", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura experience portal sp1", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura experience portal", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura conferencing", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "7.0" }, { "model": "aura conferencing standard", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura conferencing sp1 standard", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.3" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.5.0.15" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2.4.0.15" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.2" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura communication manager utility services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.0" }, { "model": "aura application server sip core", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "53003.0" }, { "model": "aura application server sip core", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "53002.0" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.1" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.2" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1.1" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "6.1" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.4" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.3" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2.2" }, { "model": "aura application enablement services", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "5.2" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.5" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.4" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.3" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.2" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.1" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7" }, { "model": "mac os server", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.6.8" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.8.4" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.8.2" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.8.1" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.5" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.8.3" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.8" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.4" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.3" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.2" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7.1" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.7" }, { "model": "mac os", "scope": "eq", "trust": 0.3, "vendor": "apple", "version": "x10.6.8" }, { "model": "trio tview software", "scope": "ne", "trust": 0.3, "vendor": "schneider electric", "version": "3.29.0" }, { "model": "network and security manager software 2012.2r9", "scope": "ne", "trust": 0.3, "vendor": "juniper", "version": null }, { "model": "virtualization engine ts7700", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "8.31.0.89" }, { "model": "java sdk sr5", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "7" }, { "model": "java sdk sr6", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "6.0.1" }, { "model": "java sdk sr14", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "6" }, { "model": "java sdk sr16-fp3", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "5.0" }, { "model": "java sdk sr13-fp18", "scope": "ne", "trust": 0.3, "vendor": "ibm", "version": "1.4.2" } ], "sources": [ { "db": "BID", "id": "60645" }, { "db": "NVD", "id": "CVE-2013-2461" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update41:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update43:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:openjdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "r27.7.5", "versionStartIncluding": "r27.7.1", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "r28.2.7", "versionStartIncluding": "r28.0.0", "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "NVD", "id": "CVE-2013-2461" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Red Hat", "sources": [ { "db": "PACKETSTORM", "id": "122085" }, { "db": "PACKETSTORM", "id": "126195" }, { "db": "PACKETSTORM", "id": "122109" }, { "db": "PACKETSTORM", "id": "122273" } ], "trust": 0.4 }, "cve": "CVE-2013-2461", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "acInsufInfo": false, "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "author": "NVD", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "exploitabilityScore": 10.0, "impactScore": 6.4, "integrityImpact": "PARTIAL", "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "trust": 1.0, "userInteractionRequired": false, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, { "acInsufInfo": null, "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "author": "VULMON", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "exploitabilityScore": 10.0, "id": "CVE-2013-2461", "impactScore": 6.4, "integrityImpact": "PARTIAL", "obtainAllPrivilege": null, "obtainOtherPrivilege": null, "obtainUserPrivilege": null, "severity": "HIGH", "trust": 0.1, "userInteractionRequired": null, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" } ], "cvssV3": [], "severity": [ { "author": "NVD", "id": "CVE-2013-2461", "trust": 1.0, "value": "HIGH" }, { "author": "VULMON", "id": "CVE-2013-2461", "trust": 0.1, "value": "HIGH" } ] } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-2461" }, { "db": "NVD", "id": "CVE-2013-2461" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\". \nThe vulnerability can be exploited over multiple protocols. This issue affects the \u0027Libraries\u0027 sub-component. \nThis vulnerability affects the following supported versions:\n7 Update 21 , 6 Update 45. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory GLSA 201406-32\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n Title: IcedTea JDK: Multiple vulnerabilities\n Date: June 29, 2014\n Bugs: #312297, #330205, #340819, #346799, #352035, #353418,\n #354231, #355127, #370787, #387637, #404095, #421031,\n #429522, #433389, #438750, #442478, #457206, #458410,\n #461714, #466822, #477210, #489570, #508270\n ID: 201406-32\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in the IcedTea JDK, the worst\nof which could lead to arbitrary code execution. \n\nBackground\n==========\n\nIcedTea is a distribution of the Java OpenJDK source code built with\nfree build tools. \n\nAffected packages\n=================\n\n -------------------------------------------------------------------\n Package / Vulnerable / Unaffected\n -------------------------------------------------------------------\n 1 dev-java/icedtea-bin \u003c 6.1.13.3 \u003e= 6.1.13.3 \n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in the IcedTea JDK. \nPlease review the CVE identifiers referenced below for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll IcedTea JDK users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose \"\u003e=dev-java/icedtea-bin-6.1.13.3\"\n\nReferences\n==========\n\n[ 1 ] CVE-2009-3555\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3555\n[ 2 ] CVE-2010-2548\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2548\n[ 3 ] CVE-2010-2783\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2783\n[ 4 ] CVE-2010-3541\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3541\n[ 5 ] CVE-2010-3548\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3548\n[ 6 ] CVE-2010-3549\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3549\n[ 7 ] CVE-2010-3551\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3551\n[ 8 ] CVE-2010-3553\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3553\n[ 9 ] CVE-2010-3554\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3554\n[ 10 ] CVE-2010-3557\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3557\n[ 11 ] CVE-2010-3561\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3561\n[ 12 ] CVE-2010-3562\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3562\n[ 13 ] CVE-2010-3564\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3564\n[ 14 ] CVE-2010-3565\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3565\n[ 15 ] CVE-2010-3566\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3566\n[ 16 ] CVE-2010-3567\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3567\n[ 17 ] CVE-2010-3568\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3568\n[ 18 ] CVE-2010-3569\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3569\n[ 19 ] CVE-2010-3573\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3573\n[ 20 ] CVE-2010-3574\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3574\n[ 21 ] CVE-2010-3860\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3860\n[ 22 ] CVE-2010-4351\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4351\n[ 23 ] CVE-2010-4448\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4448\n[ 24 ] CVE-2010-4450\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4450\n[ 25 ] CVE-2010-4465\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4465\n[ 26 ] CVE-2010-4467\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4467\n[ 27 ] CVE-2010-4469\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4469\n[ 28 ] CVE-2010-4470\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4470\n[ 29 ] CVE-2010-4471\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4471\n[ 30 ] CVE-2010-4472\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4472\n[ 31 ] CVE-2010-4476\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4476\n[ 32 ] CVE-2011-0025\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0025\n[ 33 ] CVE-2011-0706\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0706\n[ 34 ] CVE-2011-0815\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0815\n[ 35 ] CVE-2011-0822\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0822\n[ 36 ] CVE-2011-0862\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0862\n[ 37 ] CVE-2011-0864\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0864\n[ 38 ] CVE-2011-0865\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0865\n[ 39 ] CVE-2011-0868\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0868\n[ 40 ] CVE-2011-0869\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0869\n[ 41 ] CVE-2011-0870\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0870\n[ 42 ] CVE-2011-0871\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0871\n[ 43 ] CVE-2011-0872\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0872\n[ 44 ] CVE-2011-3389\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3389\n[ 45 ] CVE-2011-3521\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3521\n[ 46 ] CVE-2011-3544\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3544\n[ 47 ] CVE-2011-3547\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3547\n[ 48 ] CVE-2011-3548\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3548\n[ 49 ] CVE-2011-3551\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3551\n[ 50 ] CVE-2011-3552\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3552\n[ 51 ] CVE-2011-3553\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3553\n[ 52 ] CVE-2011-3554\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3554\n[ 53 ] CVE-2011-3556\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3556\n[ 54 ] CVE-2011-3557\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3557\n[ 55 ] CVE-2011-3558\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3558\n[ 56 ] CVE-2011-3560\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3560\n[ 57 ] CVE-2011-3563\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3563\n[ 58 ] CVE-2011-3571\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3571\n[ 59 ] CVE-2011-5035\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-5035\n[ 60 ] CVE-2012-0497\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0497\n[ 61 ] CVE-2012-0501\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0501\n[ 62 ] CVE-2012-0502\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0502\n[ 63 ] CVE-2012-0503\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0503\n[ 64 ] CVE-2012-0505\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0505\n[ 65 ] CVE-2012-0506\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0506\n[ 66 ] CVE-2012-0547\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0547\n[ 67 ] CVE-2012-1711\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1711\n[ 68 ] CVE-2012-1713\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1713\n[ 69 ] CVE-2012-1716\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1716\n[ 70 ] CVE-2012-1717\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1717\n[ 71 ] CVE-2012-1718\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1718\n[ 72 ] CVE-2012-1719\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1719\n[ 73 ] CVE-2012-1723\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1723\n[ 74 ] CVE-2012-1724\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1724\n[ 75 ] CVE-2012-1725\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1725\n[ 76 ] CVE-2012-1726\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1726\n[ 77 ] CVE-2012-3216\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3216\n[ 78 ] CVE-2012-3422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3422\n[ 79 ] CVE-2012-3423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3423\n[ 80 ] CVE-2012-4416\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4416\n[ 81 ] CVE-2012-4540\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4540\n[ 82 ] CVE-2012-5068\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5068\n[ 83 ] CVE-2012-5069\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5069\n[ 84 ] CVE-2012-5070\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5070\n[ 85 ] CVE-2012-5071\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5071\n[ 86 ] CVE-2012-5072\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5072\n[ 87 ] CVE-2012-5073\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5073\n[ 88 ] CVE-2012-5074\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5074\n[ 89 ] CVE-2012-5075\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5075\n[ 90 ] CVE-2012-5076\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5076\n[ 91 ] CVE-2012-5077\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5077\n[ 92 ] CVE-2012-5081\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5081\n[ 93 ] CVE-2012-5084\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5084\n[ 94 ] CVE-2012-5085\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5085\n[ 95 ] CVE-2012-5086\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5086\n[ 96 ] CVE-2012-5087\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5087\n[ 97 ] CVE-2012-5089\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5089\n[ 98 ] CVE-2012-5979\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5979\n[ 99 ] CVE-2013-0169\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169\n[ 100 ] CVE-2013-0401\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0401\n[ 101 ] CVE-2013-0424\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0424\n[ 102 ] CVE-2013-0425\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0425\n[ 103 ] CVE-2013-0426\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0426\n[ 104 ] CVE-2013-0427\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0427\n[ 105 ] CVE-2013-0428\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0428\n[ 106 ] CVE-2013-0429\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0429\n[ 107 ] CVE-2013-0431\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0431\n[ 108 ] CVE-2013-0432\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0432\n[ 109 ] CVE-2013-0433\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0433\n[ 110 ] CVE-2013-0434\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0434\n[ 111 ] CVE-2013-0435\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0435\n[ 112 ] CVE-2013-0440\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0440\n[ 113 ] CVE-2013-0441\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0441\n[ 114 ] CVE-2013-0442\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0442\n[ 115 ] CVE-2013-0443\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0443\n[ 116 ] CVE-2013-0444\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0444\n[ 117 ] CVE-2013-0450\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0450\n[ 118 ] CVE-2013-0809\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0809\n[ 119 ] CVE-2013-1475\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1475\n[ 120 ] CVE-2013-1476\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1476\n[ 121 ] CVE-2013-1478\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1478\n[ 122 ] CVE-2013-1480\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1480\n[ 123 ] CVE-2013-1484\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1484\n[ 124 ] CVE-2013-1485\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1485\n[ 125 ] CVE-2013-1486\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1486\n[ 126 ] CVE-2013-1488\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1488\n[ 127 ] CVE-2013-1493\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1493\n[ 128 ] CVE-2013-1500\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1500\n[ 129 ] CVE-2013-1518\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1518\n[ 130 ] CVE-2013-1537\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1537\n[ 131 ] CVE-2013-1557\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1557\n[ 132 ] CVE-2013-1569\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1569\n[ 133 ] CVE-2013-1571\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1571\n[ 134 ] CVE-2013-2383\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2383\n[ 135 ] CVE-2013-2384\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2384\n[ 136 ] CVE-2013-2407\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2407\n[ 137 ] CVE-2013-2412\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2412\n[ 138 ] CVE-2013-2415\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2415\n[ 139 ] CVE-2013-2417\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2417\n[ 140 ] CVE-2013-2419\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2419\n[ 141 ] CVE-2013-2420\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2420\n[ 142 ] CVE-2013-2421\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2421\n[ 143 ] CVE-2013-2422\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2422\n[ 144 ] CVE-2013-2423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2423\n[ 145 ] CVE-2013-2424\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2424\n[ 146 ] CVE-2013-2426\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2426\n[ 147 ] CVE-2013-2429\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2429\n[ 148 ] CVE-2013-2430\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2430\n[ 149 ] CVE-2013-2431\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2431\n[ 150 ] CVE-2013-2436\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2436\n[ 151 ] CVE-2013-2443\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2443\n[ 152 ] CVE-2013-2444\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2444\n[ 153 ] CVE-2013-2445\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2445\n[ 154 ] CVE-2013-2446\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2446\n[ 155 ] CVE-2013-2447\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2447\n[ 156 ] CVE-2013-2448\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2448\n[ 157 ] CVE-2013-2449\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2449\n[ 158 ] CVE-2013-2450\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2450\n[ 159 ] CVE-2013-2451\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2451\n[ 160 ] CVE-2013-2452\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2452\n[ 161 ] CVE-2013-2453\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2453\n[ 162 ] CVE-2013-2454\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2454\n[ 163 ] CVE-2013-2455\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2455\n[ 164 ] CVE-2013-2456\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2456\n[ 165 ] CVE-2013-2457\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2457\n[ 166 ] CVE-2013-2458\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2458\n[ 167 ] CVE-2013-2459\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2459\n[ 168 ] CVE-2013-2460\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2460\n[ 169 ] CVE-2013-2461\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2461\n[ 170 ] CVE-2013-2463\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2463\n[ 171 ] CVE-2013-2465\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2465\n[ 172 ] CVE-2013-2469\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2469\n[ 173 ] CVE-2013-2470\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2470\n[ 174 ] CVE-2013-2471\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2471\n[ 175 ] CVE-2013-2472\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2472\n[ 176 ] CVE-2013-2473\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2473\n[ 177 ] CVE-2013-3829\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-3829\n[ 178 ] CVE-2013-4002\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4002\n[ 179 ] CVE-2013-5772\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5772\n[ 180 ] CVE-2013-5774\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5774\n[ 181 ] CVE-2013-5778\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5778\n[ 182 ] CVE-2013-5780\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5780\n[ 183 ] CVE-2013-5782\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5782\n[ 184 ] CVE-2013-5783\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5783\n[ 185 ] CVE-2013-5784\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5784\n[ 186 ] CVE-2013-5790\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5790\n[ 187 ] CVE-2013-5797\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5797\n[ 188 ] CVE-2013-5800\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5800\n[ 189 ] CVE-2013-5802\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5802\n[ 190 ] CVE-2013-5803\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5803\n[ 191 ] CVE-2013-5804\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5804\n[ 192 ] CVE-2013-5805\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5805\n[ 193 ] CVE-2013-5806\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5806\n[ 194 ] CVE-2013-5809\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5809\n[ 195 ] CVE-2013-5814\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5814\n[ 196 ] CVE-2013-5817\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5817\n[ 197 ] CVE-2013-5820\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5820\n[ 198 ] CVE-2013-5823\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5823\n[ 199 ] CVE-2013-5825\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5825\n[ 200 ] CVE-2013-5829\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5829\n[ 201 ] CVE-2013-5830\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5830\n[ 202 ] CVE-2013-5840\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5840\n[ 203 ] CVE-2013-5842\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5842\n[ 204 ] CVE-2013-5849\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5849\n[ 205 ] CVE-2013-5850\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5850\n[ 206 ] CVE-2013-5851\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-5851\n[ 207 ] CVE-2013-6629\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6629\n[ 208 ] CVE-2013-6954\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6954\n[ 209 ] CVE-2014-0429\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0429\n[ 210 ] CVE-2014-0446\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0446\n[ 211 ] CVE-2014-0451\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0451\n[ 212 ] CVE-2014-0452\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0452\n[ 213 ] CVE-2014-0453\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0453\n[ 214 ] CVE-2014-0456\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0456\n[ 215 ] CVE-2014-0457\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0457\n[ 216 ] CVE-2014-0458\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0458\n[ 217 ] CVE-2014-0459\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0459\n[ 218 ] CVE-2014-0460\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0460\n[ 219 ] CVE-2014-0461\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0461\n[ 220 ] CVE-2014-1876\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1876\n[ 221 ] CVE-2014-2397\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2397\n[ 222 ] CVE-2014-2398\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2398\n[ 223 ] CVE-2014-2403\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2403\n[ 224 ] CVE-2014-2412\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2412\n[ 225 ] CVE-2014-2414\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2414\n[ 226 ] CVE-2014-2421\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2421\n[ 227 ] CVE-2014-2423\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2423\n[ 228 ] CVE-2014-2427\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2427\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201406-32.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2014 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. (CVE-2013-2412)\n\nIt was discovered that GnomeFileTypeDetector did not check for read\npermissions when accessing files. \n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.10. Refer to\nthe NEWS file, linked to in the References, for further information. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nAPPLE-SA-2013-06-18-1 Java for OS X 2013-004 and\nMac OS X v10.6 Update 16\n\nJava for OS X 2013-004 and Mac OS X v10.6 Update 16 is now available\nand addresses the following:\n\nJava\nAvailable for: Mac OS X v10.6.8, Mac OS X Server v10.6.8,\nOS X Lion v10.7 or later, OS X Lion Server v10.7 or later,\nOS X Mountain Lion 10.8 or later\nImpact: Multiple vulnerabilities in Java 1.6.0_45\nDescription: 8011782 Multiple vulnerabilities existed in Java\n1.6.0_45, the most serious of which may allow an untrusted Java\napplet to execute arbitrary code outside the Java sandbox. These issues were addressed by updating to Java version\n1.6.0_51. Further information is available via the Java website at ht\ntp://www.oracle.com/technetwork/java/javase/releasenotes-136954.html\nCVE-ID\nCVE-2013-1500\nCVE-2013-1571\nCVE-2013-2407\nCVE-2013-2412\nCVE-2013-2437\nCVE-2013-2442\nCVE-2013-2443\nCVE-2013-2444\nCVE-2013-2445\nCVE-2013-2446\nCVE-2013-2447\nCVE-2013-2448\nCVE-2013-2450\nCVE-2013-2451\nCVE-2013-2452\nCVE-2013-2453\nCVE-2013-2454\nCVE-2013-2455\nCVE-2013-2456\nCVE-2013-2457\nCVE-2013-2459\nCVE-2013-2461\nCVE-2013-2463\nCVE-2013-2464\nCVE-2013-2465\nCVE-2013-2466\nCVE-2013-2468\nCVE-2013-2469\nCVE-2013-2470\nCVE-2013-2471\nCVE-2013-2472\nCVE-2013-2473\nCVE-2013-3743\nCVE_2013-2445\n\n\nJava for OS X 2013-004 and Mac OS X v10.6 Update 16\nmay be obtained from the Software Update pane in System Preferences,\nMac App Store, or Apple\u0027s Software Downloads web site:\nhttp://www.apple.com/support/downloads/\n\nFor Mac OS X v10.6 systems\nThe download file is named: JavaForMacOSX10.6.Update16.dmg\nIts SHA-1 digest is: a6b5a9caa3c0d9acf743da8e4c0e5cfe4e471b01\n\nFor OS X Lion and Mountain Lion systems\nThe download file is named: JavaForOSX2013-004.dmg\nIts SHA-1 digest is: 153c3f74d5285d10008fce2004d904da8d2ffdff\n\nInformation will also be posted to the Apple Security Updates\nweb site: http://support.apple.com/kb/HT1222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG/MacGPG2 v2.0.17 (Darwin)\nComment: GPGTools - http://gpgtools.org\n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\n3t9MUCG40o5ZQFyWqV1+\n=zFXN\n-----END PGP SIGNATURE-----\n. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section. ============================================================================\nUbuntu Security Notice USN-1907-2\nJuly 16, 2013\n\nicedtea-web update\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 13.04\n- Ubuntu 12.10\n- Ubuntu 12.04 LTS\n\nSummary:\n\nIcedTea Web updated to work with new OpenJDK 7. \n\nSoftware Description:\n- icedtea-web: A web browser plugin to execute Java applets\n\nDetails:\n\nUSN-1907-1 fixed vulnerabilities in OpenJDK 7. Due to upstream changes,\nIcedTea Web needed an update to work with the new OpenJDK 7. \n\nOriginal advisory details:\n\n Several vulnerabilities were discovered in the OpenJDK JRE related to\n information disclosure and data integrity. (CVE-2013-1500, CVE-2013-2454,\n CVE-2013-2458)\n\n A vulnerability was discovered in the OpenJDK Javadoc related to data\n integrity. (CVE-2013-1571)\n\n A vulnerability was discovered in the OpenJDK JRE related to information\n disclosure and availability. (CVE-2013-2412, CVE-2013-2443, CVE-2013-2446,\n CVE-2013-2447, CVE-2013-2449, CVE-2013-2452, CVE-2013-2456)\n\n Several vulnerabilities were discovered in the OpenJDK JRE related to\n availability. (CVE-2013-2448, CVE-2013-2451, CVE-2013-2459, CVE-2013-2460,\n CVE-2013-2461, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470,\n CVE-2013-2471, CVE-2013-2472, CVE-2013-2473)\n\n Several vulnerabilities were discovered in the OpenJDK JRE related to data\n integrity. (CVE-2013-2453, CVE-2013-2455, CVE-2013-2457)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 13.04:\n icedtea-netx 1.3.2-1ubuntu1.1\n\nUbuntu 12.10:\n icedtea-netx 1.3.2-1ubuntu0.12.10.2\n\nUbuntu 12.04 LTS:\n icedtea-netx 1.2.3-0ubuntu0.12.04.3\n\nAfter a standard system update you need to restart your browser to make\nall the necessary changes. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Important: java-1.6.0-openjdk security update\nAdvisory ID: RHSA-2013:1014-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2013-1014.html\nIssue date: 2013-07-03\nCVE Names: CVE-2013-1500 CVE-2013-1571 CVE-2013-2407 \n CVE-2013-2412 CVE-2013-2443 CVE-2013-2444 \n CVE-2013-2445 CVE-2013-2446 CVE-2013-2447 \n CVE-2013-2448 CVE-2013-2450 CVE-2013-2452 \n CVE-2013-2453 CVE-2013-2455 CVE-2013-2456 \n CVE-2013-2457 CVE-2013-2459 CVE-2013-2461 \n CVE-2013-2463 CVE-2013-2465 CVE-2013-2469 \n CVE-2013-2470 CVE-2013-2471 CVE-2013-2472 \n CVE-2013-2473 \n=====================================================================\n\n1. Summary:\n\nUpdated java-1.6.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 5 and 6. \n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux (v. 5 server) - i386, x86_64\nRed Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\n\n3. Description:\n\nThese packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit. \n\nMultiple flaws were discovered in the ImagingLib and the image attribute,\nchannel, layout and raster processing in the 2D component. An untrusted\nJava application or applet could possibly use these flaws to trigger Java\nVirtual Machine memory corruption. (CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469)\n\nInteger overflow flaws were found in the way AWT processed certain input. \nAn attacker could use these flaws to execute arbitrary code with the\nprivileges of the user running an untrusted Java applet or application. \n(CVE-2013-2459)\n\nMultiple improper permission check issues were discovered in the Sound and\nJMX components in OpenJDK. An untrusted Java application or applet could\nuse these flaws to bypass Java sandbox restrictions. (CVE-2013-2448,\nCVE-2013-2457, CVE-2013-2453)\n\nMultiple flaws in the Serialization, Networking, Libraries and CORBA\ncomponents can be exploited by an untrusted Java application or applet to\ngain access to potentially sensitive information. (CVE-2013-2456,\nCVE-2013-2447, CVE-2013-2455, CVE-2013-2452, CVE-2013-2443, CVE-2013-2446)\n\nIt was discovered that the Hotspot component did not properly handle\nout-of-memory errors. An untrusted Java application or applet could\npossibly use these flaws to terminate the Java Virtual Machine. \n(CVE-2013-2445)\n\nIt was discovered that the AWT component did not properly manage certain\nresources and that the ObjectStreamClass of the Serialization component\ndid not properly handle circular references. An untrusted Java application\nor applet could possibly use these flaws to cause a denial of service. \n(CVE-2013-2444, CVE-2013-2450)\n\nIt was discovered that the Libraries component contained certain errors\nrelated to XML security and the class loader. A remote attacker could\npossibly exploit these flaws to bypass intended security mechanisms or\ndisclose potentially sensitive information and cause a denial of service. \n(CVE-2013-2407, CVE-2013-2461)\n\nIt was discovered that JConsole did not properly inform the user when\nestablishing an SSL connection failed. An attacker could exploit this flaw\nto gain access to potentially sensitive information. (CVE-2013-2412)\n\nIt was found that documentation generated by Javadoc was vulnerable to a\nframe injection attack. If such documentation was accessible over a\nnetwork, and a remote attacker could trick a user into visiting a\nspecially-crafted URL, it would lead to arbitrary web content being\ndisplayed next to the documentation. This could be used to perform a\nphishing attack by providing frame content that spoofed a login form on\nthe site hosting the vulnerable documentation. (CVE-2013-1571)\n\nIt was discovered that the 2D component created shared memory segments with\ninsecure permissions. A local attacker could use this flaw to read or write\nto the shared memory segment. (CVE-2013-1500)\n\nRed Hat would like to thank US-CERT for reporting CVE-2013-1571, and Tim\nBrown for reporting CVE-2013-1500. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571. \n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n973474 - CVE-2013-1571 OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)\n975099 - CVE-2013-2470 OpenJDK: ImagingLib byte lookup processing (2D, 8011243)\n975102 - CVE-2013-2471 OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)\n975107 - CVE-2013-2472 OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)\n975110 - CVE-2013-2473 OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)\n975115 - CVE-2013-2463 OpenJDK: Incorrect image attribute verification (2D, 8012438)\n975118 - CVE-2013-2465 OpenJDK: Incorrect image channel verification (2D, 8012597)\n975120 - CVE-2013-2469 OpenJDK: Incorrect image layout verification (2D, 8012601)\n975121 - CVE-2013-2459 OpenJDK: Various AWT integer overflow checks (AWT, 8009071)\n975124 - CVE-2013-2445 OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)\n975125 - CVE-2013-2448 OpenJDK: Better access restrictions (Sound, 8006328)\n975126 - CVE-2013-2461 OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)\n975127 - CVE-2013-2407 OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)\n975131 - CVE-2013-2444 OpenJDK: Resource denial of service (AWT, 8001038)\n975132 - CVE-2013-2446 OpenJDK: output stream access restrictions (CORBA, 8000642)\n975133 - CVE-2013-2457 OpenJDK: Proper class checking (JMX, 8008120)\n975134 - CVE-2013-2453 OpenJDK: MBeanServer Introspector package access (JMX, 8008124)\n975137 - CVE-2013-2443 OpenJDK: AccessControlContext check order issue (Libraries, 8001330)\n975138 - CVE-2013-2452 OpenJDK: Unique VMIDs (Libraries, 8001033)\n975139 - CVE-2013-2455 OpenJDK: getEnclosing* checks (Libraries, 8007812)\n975140 - CVE-2013-2447 OpenJDK: Prevent revealing the local address (Networking, 8001318)\n975141 - CVE-2013-2450 OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)\n975142 - CVE-2013-2456 OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)\n975144 - CVE-2013-2412 OpenJDK: JConsole SSL support (Serviceability, 8003703)\n975148 - CVE-2013-1500 OpenJDK: Insecure shared memory permissions (2D, 8001034)\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 5 client):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.src.rpm\n\ni386:\njava-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\n\nx86_64:\njava-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\n\nRed Hat Enterprise Linux (v. 5 server):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.src.rpm\n\ni386:\njava-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.i386.rpm\n\nx86_64:\njava-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.41.1.11.11.90.el5_9.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\ni386:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\n\nx86_64:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\ni386:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\n\nx86_64:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\nx86_64:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\nx86_64:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\ni386:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\n\nx86_64:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\ni386:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\n\nx86_64:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\ni386:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\n\nx86_64:\njava-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-devel-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-javadoc-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/java-1.6.0-openjdk-1.6.0.0-1.62.1.11.11.90.el6_4.src.rpm\n\ni386:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.i686.rpm\n\nx86_64:\njava-1.6.0-openjdk-debuginfo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-demo-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\njava-1.6.0-openjdk-src-1.6.0.0-1.62.1.11.11.90.el6_4.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2013-1500.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-1571.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2407.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2412.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2443.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2444.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2445.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2446.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2447.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2448.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2450.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2452.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2453.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2455.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2456.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2457.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2459.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2461.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2463.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2465.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2469.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2470.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2471.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2472.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-2473.html\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2013 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFR1FwzXlSAg2UNWIIRAr2aAJ9j03lh/R8goDWLLqCz9VdH4bM1jACgkYVl\nx3jKc8cs/WwK8V5nIG2hJ0Q=\n=LPQe\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03874547\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03874547\nVersion: 1\n\nHPSBUX02908 rev.1 - HP-UX Running Java6, Remote Unauthorized Access,\nDisclosure of Information, and Other Vulnerabilities\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2013-07-31\nLast Updated: 2013-07-31\n\nPotential Security Impact: Remote unauthorized access, disclosure of\ninformation, and other vulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified in the Java Runtime\nEnvironment (JRE) and the Java Developer Kit (JDK) running on HP-UX. \nHP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE v6.0.19 and\nearlier. \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2013-1500 (AV:L/AC:L/Au:N/C:P/I:P/A:N) 3.6\nCVE-2013-1571 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3\nCVE-2013-2407 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4\nCVE-2013-2412 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2433 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3\nCVE-2013-2437 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2442 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2013-2444 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2013-2445 (AV:N/AC:L/Au:N/C:N/I:N/A:C) 7.8\nCVE-2013-2446 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2447 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2448 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6\nCVE-2013-2450 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2013-2451 (AV:L/AC:H/Au:N/C:P/I:P/A:P) 3.7\nCVE-2013-2452 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2453 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-2454 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8\nCVE-2013-2455 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2456 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0\nCVE-2013-2457 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0\nCVE-2013-2459 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2461 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2013-2463 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2464 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2465 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2466 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2468 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2469 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2470 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2471 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2472 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-2473 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0\nCVE-2013-3743 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following Java version upgrade to resolve these\nvulnerabilities. \n\nThe upgrade is available from the following location\n\nhttp://www.hp.com/java\n\nOS Version\n Release Version\n\nHP-UX B.11.11, B.11.23, B.11.31\n JDK and JRE v6.0.20 or subsequent\n\nMANUAL ACTIONS: Yes - Update\nFor Java v6.0 update to Java v6.0.20 or subsequent\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.11\nHP-UX B.11.23\n===========\nJdk60.JDK60-COM\nJdk60.JDK60-PA20\nJdk60.JDK60-PA20W\nJre60.JRE60-COM\nJre60.JRE60-COM-DOC\nJre60.JRE60-PA20\nJre60.JRE60-PA20-HS\nJre60.JRE60-PA20W\nJre60.JRE60-PA20W-HS\nJdk60.JDK60-IPF32\nJdk60.JDK60-IPF64\nJre60.JRE60-COM\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\naction: install revision 1.6.0.20.00 or subsequent\n\nHP-UX B.11.23\nHP-UX B.11.31\n===========\nJdk60.JDK60-COM\nJdk60.JDK60-IPF32\nJdk60.JDK60-IPF64\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\nJre60.JRE60-COM\nJre60.JRE60-IPF32\nJre60.JRE60-IPF32-HS\nJre60.JRE60-IPF64\nJre60.JRE60-IPF64-HS\naction: install revision 1.6.0.20.00 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 31 July 2013 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2013 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners", "sources": [ { "db": "NVD", "id": "CVE-2013-2461" }, { "db": "BID", "id": "60645" }, { "db": "VULMON", "id": "CVE-2013-2461" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "122085" }, { "db": "PACKETSTORM", "id": "122075" }, { "db": "PACKETSTORM", "id": "126195" }, { "db": "PACKETSTORM", "id": "122438" }, { "db": "PACKETSTORM", "id": "122109" }, { "db": "PACKETSTORM", "id": "122439" }, { "db": "PACKETSTORM", "id": "122273" }, { "db": "PACKETSTORM", "id": "122653" } ], "trust": 2.07 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2013-2461", "trust": 2.3 }, { "db": "BID", "id": "60645", "trust": 1.4 }, { "db": "SECUNIA", "id": "54154", "trust": 1.1 }, { "db": "USCERT", "id": "TA13-169A", "trust": 1.1 }, { "db": "HITACHI", "id": "HS13-015", "trust": 0.3 }, { "db": "ICS CERT", "id": "ICSA-17-213-02", "trust": 0.3 }, { "db": "JUNIPER", "id": "JSA10642", "trust": 0.3 }, { "db": "VULMON", "id": "CVE-2013-2461", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "127267", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122085", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122075", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "126195", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122438", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122109", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122439", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122273", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "122653", "trust": 0.1 } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-2461" }, { "db": "BID", "id": "60645" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "122085" }, { "db": "PACKETSTORM", "id": "122075" }, { "db": "PACKETSTORM", "id": "126195" }, { "db": "PACKETSTORM", "id": "122438" }, { "db": "PACKETSTORM", "id": "122109" }, { "db": "PACKETSTORM", "id": "122439" }, { "db": "PACKETSTORM", "id": "122273" }, { "db": "PACKETSTORM", "id": "122653" }, { "db": "NVD", "id": "CVE-2013-2461" } ] }, "id": "VAR-201306-0238", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VARIoT devices database", "id": null } ], "trust": 1.0 }, "last_update_date": "2024-07-23T19:58:18.960000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "Ubuntu Security Notice: openjdk-7 vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-1907-1" }, { "title": "Ubuntu Security Notice: icedtea-web update", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-1907-2" }, { "title": "Ubuntu Security Notice: openjdk-6 vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-1908-1" }, { "title": "Debian Security Advisories: DSA-2727-1 openjdk-6 -- several vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=e7d6ea8eb77ee8911e5bbc08ff43f55c" }, { "title": "Debian Security Advisories: DSA-2722-1 openjdk-7 -- several vulnerabilities", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=29128f887c1069c9cc8e265bacca4512" }, { "title": "Amazon Linux AMI: ALAS-2013-207", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2013-207" }, { "title": "Amazon Linux AMI: ALAS-2013-204", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2013-204" } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-2461" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "NVD-CWE-noinfo", "trust": 1.0 } ], "sources": [ { "db": "NVD", "id": "CVE-2013-2461" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 1.6, "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "trust": 1.4, "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "trust": 1.2, "url": "http://rhn.redhat.com/errata/rhsa-2013-0963.html" }, { "trust": 1.2, "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "trust": 1.2, "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "trust": 1.2, "url": "http://www.securityfocus.com/bid/60645" }, { "trust": 1.1, "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "trust": 1.1, "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "trust": 1.1, "url": "http://secunia.com/advisories/54154" }, { "trust": 1.1, "url": "http://www.us-cert.gov/ncas/alerts/ta13-169a" }, { "trust": 1.1, "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "trust": 1.1, "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "trust": 1.1, "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2013:183" }, { "trust": 1.1, "url": "http://advisories.mageia.org/mgasa-2013-0185.html" }, { "trust": 1.1, "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "trust": 1.1, "url": "http://www.vmware.com/security/advisories/vmsa-2014-0012.html" }, { "trust": 1.1, "url": "http://seclists.org/fulldisclosure/2014/dec/23" }, { "trust": 1.1, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19582" }, { "trust": 1.1, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19565" }, { "trust": 1.1, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16887" }, { "trust": 1.1, "url": "https://access.redhat.com/errata/rhsa-2014:0414" }, { "trust": 1.1, "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2456" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2407" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2447" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2452" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1571" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2461" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2463" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2445" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-1500" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2412" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2448" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2465" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2446" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2444" }, { "trust": 0.7, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2450" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2453" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2469" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2455" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2457" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2443" }, { "trust": 0.6, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2459" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2454" }, { "trust": 0.5, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2451" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2470" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2412.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2463.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2446.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-1500.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2455.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2456.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2459.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2461.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2444.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2445.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2407.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2447.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2452.html" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2458" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2470.html" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2449" }, { "trust": 0.4, "url": "https://access.redhat.com/security/team/contact/" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-1571.html" }, { "trust": 0.4, "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2448.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2465.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2472.html" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2472" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2471.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2453.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2473.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2469.html" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2471" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2443.html" }, { "trust": 0.4, "url": "https://access.redhat.com/security/team/key/#package" }, { "trust": 0.4, "url": "http://bugzilla.redhat.com/):" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2450.html" }, { "trust": 0.4, "url": "https://www.redhat.com/security/data/cve/cve-2013-2457.html" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2437" }, { "trust": 0.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2442" }, { "trust": 0.3, "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10642\u0026cat=sirt_1\u0026actp=list" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001621" }, { "trust": 0.3, "url": "http://www.oracle.com/index.html" }, { "trust": 0.3, "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-213-02" }, { "trust": 0.3, "url": "http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.jtfhr2..t.cyta.7%2a%2ak.bw89mq%5f%5fdehufqb0" }, { "trust": 0.3, "url": "http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.jtfhr2..t.cytc.7%2a%2ak.bw89mq%5f%5fdeoifqd0" }, { "trust": 0.3, "url": "http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs13-015/index.html" }, { "trust": 0.3, "url": "http://www.ibm.com/developerworks/java/jdk/alerts/" }, { "trust": 0.3, "url": "https://downloads.avaya.com/css/p8/documents/100173341" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1019760" }, { "trust": 0.3, "url": "https://downloads.avaya.com/css/p8/documents/100175056" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21644918" }, { "trust": 0.3, "url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004514" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21645500" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21648074" }, { "trust": 0.3, "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24036927" }, { "trust": 0.3, "url": "http://www.ubuntu.com/usn/usn-1908-1/" }, { "trust": 0.3, "url": "http://www.xerox.com/download/security/security-bulletin/12047-4e4eed8d42ca6/cert_xrx13-007_v1.0.pdf" }, { "trust": 0.3, "url": "https://access.redhat.com/security/updates/classification/#important" }, { "trust": 0.3, "url": "https://www.redhat.com/security/data/cve/cve-2013-2454.html" }, { "trust": 0.3, "url": "https://access.redhat.com/knowledge/articles/11258" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2464" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2468" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2466" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2473" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2460.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2449.html" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2460" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2458.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2468.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2451.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2464.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2466.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2437.html" }, { "trust": 0.2, "url": "https://www.redhat.com/security/data/cve/cve-2013-2442.html" }, { "trust": 0.2, "url": "http://www.ubuntu.com/usn/usn-1907-1" }, { "trust": 0.1, "url": "https://cwe.mitre.org/data/definitions/.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov" }, { "trust": 0.1, "url": "https://usn.ubuntu.com/1907-1/" }, { "trust": 0.1, "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=29704" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4470" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3574" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3565" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2469" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0864" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3553" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2443" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1717" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2412" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1716" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0505" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1518" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2419" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3557" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2414" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4450" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-3829" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5829" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5804" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1485" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5806" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5087" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2422" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0865" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4471" }, { "trust": 0.1, "url": "http://creativecommons.org/licenses/by-sa/2.5" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5075" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3557" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3562" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2426" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3567" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-4002" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5084" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1711" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1478" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2461" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5820" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5979" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6954" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2470" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4476" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0547" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4540" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0429" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0441" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2451" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2459" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5823" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2421" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0870" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3554" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0862" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2460" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1713" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0706" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0434" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5784" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3568" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5830" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3561" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5800" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4467" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3567" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2456" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5803" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4465" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4472" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5086" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3556" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0425" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2383" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2447" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2452" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2445" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2450" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5778" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5780" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5073" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3568" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1493" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2446" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5069" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-5035" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3541" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3566" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3549" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1500" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3562" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3571" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3555" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0426" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0457" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5850" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2783" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3573" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3552" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0451" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0459" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2423" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-1876" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2384" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4469" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0431" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1557" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0458" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2453" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4448" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3521" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0401" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5085" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2407" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2421" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3564" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2429" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4465" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3569" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2403" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5068" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0871" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5071" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2398" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0432" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0815" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0444" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1475" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0497" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5774" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5782" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3554" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4469" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1725" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5790" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5805" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3564" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5802" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5849" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1719" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3569" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3573" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0461" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0442" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2448" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2458" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0427" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3548" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2427" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5825" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0506" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1484" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2430" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3541" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2415" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3549" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3565" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0872" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3216" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0429" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1718" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5772" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3860" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3422" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0433" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5074" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3554" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3574" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2454" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2444" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5072" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4470" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2436" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4416" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0822" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1537" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3553" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3555" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3551" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2449" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0503" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0025" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2457" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1476" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0169" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0424" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3563" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0809" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5077" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0435" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3544" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0456" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4450" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1723" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1726" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0450" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1571" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4467" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0460" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5081" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3547" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5840" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5851" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2465" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2431" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2473" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-6629" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5783" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4448" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-2783" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2463" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3560" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2412" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5809" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1480" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-4351" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2420" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0501" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0428" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0869" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2417" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2471" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3566" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3551" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2424" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5076" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5842" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-2397" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0452" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3553" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1569" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1724" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3558" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5797" }, { "trust": 0.1, "url": "http://security.gentoo.org/" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5070" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1486" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2472" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0446" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0453" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-3860" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-1488" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0502" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3561" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0868" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0440" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-0443" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3389" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5814" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-5817" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4351" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3551" }, { "trust": 0.1, "url": "https://bugs.gentoo.org." }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2013-2455" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2010-3557" }, { "trust": 0.1, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-5089" }, { "trust": 0.1, "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.10/news" }, { "trust": 0.1, "url": "https://rhn.redhat.com/errata/rhsa-2013-0958.html" }, { "trust": 0.1, "url": "http://support.apple.com/kb/ht1222" }, { "trust": 0.1, "url": "https://www.oracle.com/technetwork/java/javase/releasenotes-136954.html" }, { "trust": 0.1, "url": "http://www.apple.com/support/downloads/" }, { "trust": 0.1, "url": "https://www.apple.com/support/security/pgp/" }, { "trust": 0.1, "url": "http://gpgtools.org" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0451.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0449.html" }, { "trust": 0.1, "url": "https://access.redhat.com/site/articles/11258" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5896.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5817.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0452.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5797.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2428.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0428.html" }, { "trust": 0.1, "url": "https://rhn.redhat.com/errata/rhsa-2014-0414.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5910.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0446.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5782.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5802.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5803.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5832.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5778.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5823.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5899.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5783.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0457.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5801.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5780.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2420.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2409.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-6629.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0416.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0453.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-6954.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5818.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5824.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5789.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-3743.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0403.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5850.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5812.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5842.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0422.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5902.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5849.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0368.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5889.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0415.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2403.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0375.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5831.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0423.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5878.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5776.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0376.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5848.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0410.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5852.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5840.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2427.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-3829.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5907.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5772.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0373.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0458.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0411.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0460.html" }, { "trust": 0.1, "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5905.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0417.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0424.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5819.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2412.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2398.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5820.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5809.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5898.html" }, { "trust": 0.1, "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2421.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5884.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5825.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5774.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0461.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2423.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5830.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2414.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5784.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5887.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-4002.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0418.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5906.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0387.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-1876.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-2401.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0456.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5790.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5787.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5804.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5843.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5888.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5814.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2014-0429.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-5829.html" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/openjdk-7/7u25-2.3.10-1ubuntu0.13.04.2" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/openjdk-7/7u25-2.3.10-1ubuntu0.12.10.2" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-3744.html" }, { "trust": 0.1, "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2400" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2400.html" }, { "trust": 0.1, "url": "https://www.redhat.com/security/data/cve/cve-2013-2462.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2462" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/icedtea-web/1.3.2-1ubuntu0.12.10.2" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/icedtea-web/1.2.3-0ubuntu0.12.04.3" }, { "trust": 0.1, "url": "https://launchpad.net/ubuntu/+source/icedtea-web/1.3.2-1ubuntu1.1" }, { "trust": 0.1, "url": "https://launchpad.net/bugs/1201908" }, { "trust": 0.1, "url": "http://www.ubuntu.com/usn/usn-1907-2" }, { "trust": 0.1, "url": "https://rhn.redhat.com/errata/rhsa-2013-1014.html" }, { "trust": 0.1, "url": "http://www.hp.com/java" }, { "trust": 0.1, "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2433" }, { "trust": 0.1, "url": "https://www.hp.com/go/swa" }, { "trust": 0.1, "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/" }, { "trust": 0.1, "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/" } ], "sources": [ { "db": "VULMON", "id": "CVE-2013-2461" }, { "db": "BID", "id": "60645" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "122085" }, { "db": "PACKETSTORM", "id": "122075" }, { "db": "PACKETSTORM", "id": "126195" }, { "db": "PACKETSTORM", "id": "122438" }, { "db": "PACKETSTORM", "id": "122109" }, { "db": "PACKETSTORM", "id": "122439" }, { "db": "PACKETSTORM", "id": "122273" }, { "db": "PACKETSTORM", "id": "122653" }, { "db": "NVD", "id": "CVE-2013-2461" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "VULMON", "id": "CVE-2013-2461" }, { "db": "BID", "id": "60645" }, { "db": "PACKETSTORM", "id": "127267" }, { "db": "PACKETSTORM", "id": "122085" }, { "db": "PACKETSTORM", "id": "122075" }, { "db": "PACKETSTORM", "id": "126195" }, { "db": "PACKETSTORM", "id": "122438" }, { "db": "PACKETSTORM", "id": "122109" }, { "db": "PACKETSTORM", "id": "122439" }, { "db": "PACKETSTORM", "id": "122273" }, { "db": "PACKETSTORM", "id": "122653" }, { "db": "NVD", "id": "CVE-2013-2461" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2013-06-18T00:00:00", "db": "VULMON", "id": "CVE-2013-2461" }, { "date": "2013-06-18T00:00:00", "db": "BID", "id": "60645" }, { "date": "2014-06-30T23:39:28", "db": "PACKETSTORM", "id": "127267" }, { "date": "2013-06-20T00:48:07", "db": "PACKETSTORM", "id": "122085" }, { "date": "2013-06-18T18:33:33", "db": "PACKETSTORM", "id": "122075" }, { "date": "2014-04-17T22:01:36", "db": "PACKETSTORM", "id": "126195" }, { "date": "2013-07-17T00:03:49", "db": "PACKETSTORM", "id": "122438" }, { "date": "2013-06-21T01:38:12", "db": "PACKETSTORM", "id": "122109" }, { "date": "2013-07-17T00:04:34", "db": "PACKETSTORM", "id": "122439" }, { "date": "2013-07-03T19:05:30", "db": "PACKETSTORM", "id": "122273" }, { "date": "2013-08-02T15:12:49", "db": "PACKETSTORM", "id": "122653" }, { "date": "2013-06-18T22:55:02.727000", "db": "NVD", "id": "CVE-2013-2461" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2019-07-18T00:00:00", "db": "VULMON", "id": "CVE-2013-2461" }, { "date": "2017-08-22T14:11:00", "db": "BID", "id": "60645" }, { "date": "2022-05-13T14:35:27.090000", "db": "NVD", "id": "CVE-2013-2461" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "network", "sources": [ { "db": "BID", "id": "60645" } ], "trust": 0.3 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Oracle Java SE CVE-2013-2461 Remote Security Vulnerability", "sources": [ { "db": "BID", "id": "60645" } ], "trust": 0.3 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Unknown", "sources": [ { "db": "BID", "id": "60645" } ], "trust": 0.3 } }
gsd-2013-2461
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2013-2461", "description": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "id": "GSD-2013-2461", "references": [ "https://www.suse.com/security/cve/CVE-2013-2461.html", "https://www.debian.org/security/2013/dsa-2727", "https://www.debian.org/security/2013/dsa-2722", "https://access.redhat.com/errata/RHSA-2014:0414", "https://access.redhat.com/errata/RHSA-2013:1014", "https://access.redhat.com/errata/RHSA-2013:0963", "https://access.redhat.com/errata/RHSA-2013:0958", "https://access.redhat.com/errata/RHSA-2013:0957", "https://advisories.mageia.org/CVE-2013-2461.html", "https://alas.aws.amazon.com/cve/html/CVE-2013-2461.html", "https://linux.oracle.com/cve/CVE-2013-2461.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2013-2461" ], "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "id": "GSD-2013-2461", "modified": "2023-12-13T01:22:18.056425Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-2461", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2", "refsource": "MISC", "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "name": "HPSBUX02908", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "name": "RHSA-2014:0414", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "oval:org.mitre.oval:def:16887", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "name": "HPSBUX02907", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "name": "54154", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/54154" }, { "name": "oval:org.mitre.oval:def:19582", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" }, { "name": "oval:org.mitre.oval:def:19565", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2014/Dec/23" }, { "name": "TA13-169A", "refsource": "CERT", "url": "http://www.us-cert.gov/ncas/alerts/TA13-169A" }, { "name": "http://advisories.mageia.org/MGASA-2013-0185.html", "refsource": "CONFIRM", "url": "http://advisories.mageia.org/MGASA-2013-0185.html" }, { "name": "RHSA-2013:0963", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0963.html" }, { "name": "60645", "refsource": "BID", "url": "http://www.securityfocus.com/bid/60645" }, { "name": "MDVSA-2013:183", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:183" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=975126", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update39:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update41:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update43:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:openjdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "r27.7.5", "versionStartIncluding": "r27.7.1", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "r28.2.7", "versionStartIncluding": "r28.0.0", "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-2461" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=975126", "refsource": "CONFIRM", "tags": [ "Issue Tracking", "Third Party Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "name": "RHSA-2013:0963", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0963.html" }, { "name": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2", "refsource": "MISC", "tags": [ "Third Party Advisory" ], "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "name": "54154", "refsource": "SECUNIA", "tags": [ "Third Party Advisory" ], "url": "http://secunia.com/advisories/54154" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "TA13-169A", "refsource": "CERT", "tags": [ "Third Party Advisory", "US Government Resource" ], "url": "http://www.us-cert.gov/ncas/alerts/TA13-169A" }, { "name": "HPSBUX02908", "refsource": "HP", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "name": "HPSBUX02907", "refsource": "HP", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "name": "MDVSA-2013:183", "refsource": "MANDRIVA", "tags": [ "Third Party Advisory" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:183" }, { "name": "http://advisories.mageia.org/MGASA-2013-0185.html", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "http://advisories.mageia.org/MGASA-2013-0185.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "name": "GLSA-201406-32", "refsource": "GENTOO", "tags": [ "Third Party Advisory" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "refsource": "FULLDISC", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://seclists.org/fulldisclosure/2014/Dec/23" }, { "name": "60645", "refsource": "BID", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/bid/60645" }, { "name": "oval:org.mitre.oval:def:19582", "refsource": "OVAL", "tags": [ "Third Party Advisory" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582" }, { "name": "oval:org.mitre.oval:def:19565", "refsource": "OVAL", "tags": [ "Third Party Advisory" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565" }, { "name": "oval:org.mitre.oval:def:16887", "refsource": "OVAL", "tags": [ "Third Party Advisory" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887" }, { "name": "RHSA-2014:0414", "refsource": "REDHAT", "tags": [ "Third Party Advisory" ], "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "refsource": "BUGTRAQ", "tags": [ "Third Party Advisory", "VDB Entry" ], "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false } }, "lastModifiedDate": "2022-05-13T14:35Z", "publishedDate": "2013-06-18T22:55Z" } } }
rhsa-2013_0958
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit.\n\nMultiple flaws were discovered in the ImagingLib and the image attribute,\nchannel, layout and raster processing in the 2D component. An untrusted\nJava application or applet could possibly use these flaws to trigger Java\nVirtual Machine memory corruption. (CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469)\n\nInteger overflow flaws were found in the way AWT processed certain input.\nAn attacker could use these flaws to execute arbitrary code with the\nprivileges of the user running an untrusted Java applet or application.\n(CVE-2013-2459)\n\nMultiple improper permission check issues were discovered in the Sound,\nJDBC, Libraries, JMX, and Serviceability components in OpenJDK. An\nuntrusted Java application or applet could use these flaws to bypass Java\nsandbox restrictions. (CVE-2013-2448, CVE-2013-2454, CVE-2013-2458,\nCVE-2013-2457, CVE-2013-2453, CVE-2013-2460)\n\nMultiple flaws in the Serialization, Networking, Libraries and CORBA\ncomponents can be exploited by an untrusted Java application or applet to\ngain access to potentially sensitive information. (CVE-2013-2456,\nCVE-2013-2447, CVE-2013-2455, CVE-2013-2452, CVE-2013-2443, CVE-2013-2446)\n\nIt was discovered that the Hotspot component did not properly handle\nout-of-memory errors. An untrusted Java application or applet could\npossibly use these flaws to terminate the Java Virtual Machine.\n(CVE-2013-2445)\n\nIt was discovered that the AWT component did not properly manage certain\nresources and that the ObjectStreamClass of the Serialization component\ndid not properly handle circular references. An untrusted Java application\nor applet could possibly use these flaws to cause a denial of service.\n(CVE-2013-2444, CVE-2013-2450)\n\nIt was discovered that the Libraries component contained certain errors\nrelated to XML security and the class loader. A remote attacker could\npossibly exploit these flaws to bypass intended security mechanisms or\ndisclose potentially sensitive information and cause a denial of service.\n(CVE-2013-2407, CVE-2013-2461)\n\nIt was discovered that JConsole did not properly inform the user when\nestablishing an SSL connection failed. An attacker could exploit this flaw\nto gain access to potentially sensitive information. (CVE-2013-2412)\n\nIt was discovered that GnomeFileTypeDetector did not check for read\npermissions when accessing files. An untrusted Java application or applet\ncould possibly use this flaw to disclose potentially sensitive information.\n(CVE-2013-2449)\n\nIt was found that documentation generated by Javadoc was vulnerable to a\nframe injection attack. If such documentation was accessible over a\nnetwork, and a remote attacker could trick a user into visiting a\nspecially-crafted URL, it would lead to arbitrary web content being\ndisplayed next to the documentation. This could be used to perform a\nphishing attack by providing frame content that spoofed a login form on\nthe site hosting the vulnerable documentation. (CVE-2013-1571)\n\nIt was discovered that the 2D component created shared memory segments with\ninsecure permissions. A local attacker could use this flaw to read or write\nto the shared memory segment. (CVE-2013-1500)\n\nRed Hat would like to thank Tim Brown for reporting CVE-2013-1500, and\nUS-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571.\n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.10. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0958", "url": "https://access.redhat.com/errata/RHSA-2013:0958" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.10/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.10/NEWS" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0958.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-openjdk security update", "tracking": { "current_release_date": "2024-11-05T18:08:06+00:00", "generator": { "date": "2024-11-05T18:08:06+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2013:0958", "initial_release_date": "2013-06-20T00:00:00+00:00", "revision_history": [ { "date": "2013-06-20T00:00:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-06-20T00:03:25+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T18:08:06+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.25-2.3.10.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.25-2.3.10.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.25-2.3.10.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.25-2.3.10.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.25-2.3.10.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.25-2.3.10.4.el5_9?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.25-2.3.10.4.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.25-2.3.10.4.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.25-2.3.10.4.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.25-2.3.10.4.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_id": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.25-2.3.10.4.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.25-2.3.10.4.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.25-2.3.10.4.el5_9?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2445", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975124" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "RHBZ#975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2449", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975145" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2449" }, { "category": "external", "summary": "RHBZ#975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2458", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975130" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Method handles (Libraries, 8009424)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2458" }, { "category": "external", "summary": "RHBZ#975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2458", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Method handles (Libraries, 8009424)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2460", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975122" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2460" }, { "category": "external", "summary": "RHBZ#975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2460", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)" }, { "cve": "CVE-2013-2461", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975126" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "RHBZ#975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T00:00:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0958" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.4.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.4.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" } ] }
rhsa-2013_0957
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit.\n\nMultiple flaws were discovered in the ImagingLib and the image attribute,\nchannel, layout and raster processing in the 2D component. An untrusted\nJava application or applet could possibly use these flaws to trigger Java\nVirtual Machine memory corruption. (CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469)\n\nInteger overflow flaws were found in the way AWT processed certain input.\nAn attacker could use these flaws to execute arbitrary code with the\nprivileges of the user running an untrusted Java applet or application.\n(CVE-2013-2459)\n\nMultiple improper permission check issues were discovered in the Sound,\nJDBC, Libraries, JMX, and Serviceability components in OpenJDK. An\nuntrusted Java application or applet could use these flaws to bypass Java\nsandbox restrictions. (CVE-2013-2448, CVE-2013-2454, CVE-2013-2458,\nCVE-2013-2457, CVE-2013-2453, CVE-2013-2460)\n\nMultiple flaws in the Serialization, Networking, Libraries and CORBA\ncomponents can be exploited by an untrusted Java application or applet to\ngain access to potentially sensitive information. (CVE-2013-2456,\nCVE-2013-2447, CVE-2013-2455, CVE-2013-2452, CVE-2013-2443, CVE-2013-2446)\n\nIt was discovered that the Hotspot component did not properly handle\nout-of-memory errors. An untrusted Java application or applet could\npossibly use these flaws to terminate the Java Virtual Machine.\n(CVE-2013-2445)\n\nIt was discovered that the AWT component did not properly manage certain\nresources and that the ObjectStreamClass of the Serialization component\ndid not properly handle circular references. An untrusted Java application\nor applet could possibly use these flaws to cause a denial of service.\n(CVE-2013-2444, CVE-2013-2450)\n\nIt was discovered that the Libraries component contained certain errors\nrelated to XML security and the class loader. A remote attacker could\npossibly exploit these flaws to bypass intended security mechanisms or\ndisclose potentially sensitive information and cause a denial of service.\n(CVE-2013-2407, CVE-2013-2461)\n\nIt was discovered that JConsole did not properly inform the user when\nestablishing an SSL connection failed. An attacker could exploit this flaw\nto gain access to potentially sensitive information. (CVE-2013-2412)\n\nIt was discovered that GnomeFileTypeDetector did not check for read\npermissions when accessing files. An untrusted Java application or applet\ncould possibly use this flaw to disclose potentially sensitive information.\n(CVE-2013-2449)\n\nIt was found that documentation generated by Javadoc was vulnerable to a\nframe injection attack. If such documentation was accessible over a\nnetwork, and a remote attacker could trick a user into visiting a\nspecially-crafted URL, it would lead to arbitrary web content being\ndisplayed next to the documentation. This could be used to perform a\nphishing attack by providing frame content that spoofed a login form on\nthe site hosting the vulnerable documentation. (CVE-2013-1571)\n\nIt was discovered that the 2D component created shared memory segments with\ninsecure permissions. A local attacker could use this flaw to read or write\nto the shared memory segment. (CVE-2013-1500)\n\nRed Hat would like to thank Tim Brown for reporting CVE-2013-1500, and\nUS-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571.\n\nNote: If the web browser plug-in provided by the icedtea-web package was\ninstalled, the issues exposed via Java applets could have been exploited\nwithout user interaction if a user visited a malicious website.\n\nAfter installing this update, users of icedtea-web must install\nRHBA-2013:0959 for icedtea-web to continue functioning.\n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.10. Refer to\nthe NEWS file, linked to in the References, for further information.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0957", "url": "https://access.redhat.com/errata/RHSA-2013:0957" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.10/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.10/NEWS" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHBA-2013-0959.html", "url": "https://rhn.redhat.com/errata/RHBA-2013-0959.html" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0957.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-openjdk security update", "tracking": { "current_release_date": "2024-11-05T18:08:00+00:00", "generator": { "date": "2024-11-05T18:08:00+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2013:0957", "initial_release_date": "2013-06-19T23:56:00+00:00", "revision_history": [ { "date": "2013-06-19T23:56:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-06-20T00:03:33+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T18:08:00+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.25-2.3.10.3.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.25-2.3.10.3.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.25-2.3.10.3.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.25-2.3.10.3.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.25-2.3.10.3.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.25-2.3.10.3.el6_4?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.25-2.3.10.3.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.25-2.3.10.3.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.25-2.3.10.3.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.25-2.3.10.3.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_id": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.25-2.3.10.3.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.25-2.3.10.3.el6_4?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2445", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975124" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "RHBZ#975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2449", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975145" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2449" }, { "category": "external", "summary": "RHBZ#975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2458", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975130" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Method handles (Libraries, 8009424)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2458" }, { "category": "external", "summary": "RHBZ#975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2458", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Method handles (Libraries, 8009424)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2460", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975122" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2460" }, { "category": "external", "summary": "RHBZ#975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2460", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)" }, { "cve": "CVE-2013-2461", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975126" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "RHBZ#975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-19T23:56:00+00:00", "details": "All users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0957" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Client-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Client-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Client-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Server-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Server-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Server-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.src", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-demo-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-devel-1:1.7.0.25-2.3.10.3.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-javadoc-1:1.7.0.25-2.3.10.3.el6_4.noarch", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.i686", "6Workstation-optional-6.4.z:java-1.7.0-openjdk-src-1:1.7.0.25-2.3.10.3.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" } ] }
rhsa-2014_0414
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Oracle Java for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nImportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\n[Updated 12th May 2014]\nThe package list in this erratum has been updated to make the packages\navailable in the Oracle Java for Red Hat Enterprise Linux 6 Workstation\nx86_64 channels on the Red Hat Network.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory pages, listed in the References section.\n(CVE-2013-1500, CVE-2013-1571, CVE-2013-2407, CVE-2013-2412, CVE-2013-2437,\nCVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445, CVE-2013-2446,\nCVE-2013-2447, CVE-2013-2448, CVE-2013-2450, CVE-2013-2451, CVE-2013-2452,\nCVE-2013-2453, CVE-2013-2454, CVE-2013-2455, CVE-2013-2456, CVE-2013-2457,\nCVE-2013-2459, CVE-2013-2461, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,\nCVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-3743, CVE-2013-3829, CVE-2013-4002,\nCVE-2013-5772, CVE-2013-5774, CVE-2013-5776, CVE-2013-5778, CVE-2013-5780,\nCVE-2013-5782, CVE-2013-5783, CVE-2013-5784, CVE-2013-5787, CVE-2013-5789,\nCVE-2013-5790, CVE-2013-5797, CVE-2013-5801, CVE-2013-5802, CVE-2013-5803,\nCVE-2013-5804, CVE-2013-5809, CVE-2013-5812, CVE-2013-5814, CVE-2013-5817,\nCVE-2013-5818, CVE-2013-5819, CVE-2013-5820, CVE-2013-5823, CVE-2013-5824,\nCVE-2013-5825, CVE-2013-5829, CVE-2013-5830, CVE-2013-5831, CVE-2013-5832,\nCVE-2013-5840, CVE-2013-5842, CVE-2013-5843, CVE-2013-5848, CVE-2013-5849,\nCVE-2013-5850, CVE-2013-5852, CVE-2013-5878, CVE-2013-5884, CVE-2013-5887,\nCVE-2013-5888, CVE-2013-5889, CVE-2013-5896, CVE-2013-5898, CVE-2013-5899,\nCVE-2013-5902, CVE-2013-5905, CVE-2013-5906, CVE-2013-5907, CVE-2013-5910,\nCVE-2013-6629, CVE-2013-6954, CVE-2014-0368, CVE-2014-0373, CVE-2014-0375,\nCVE-2014-0376, CVE-2014-0387, CVE-2014-0403, CVE-2014-0410, CVE-2014-0411,\nCVE-2014-0415, CVE-2014-0416, CVE-2014-0417, CVE-2014-0418, CVE-2014-0422,\nCVE-2014-0423, CVE-2014-0424, CVE-2014-0428, CVE-2014-0429, CVE-2014-0446,\nCVE-2014-0449, CVE-2014-0451, CVE-2014-0452, CVE-2014-0453, CVE-2014-0456,\nCVE-2014-0457, CVE-2014-0458, CVE-2014-0460, CVE-2014-0461, CVE-2014-1876,\nCVE-2014-2398, CVE-2014-2401, CVE-2014-2403, CVE-2014-2409, CVE-2014-2412,\nCVE-2014-2414, CVE-2014-2420, CVE-2014-2421, CVE-2014-2423, CVE-2014-2427,\nCVE-2014-2428)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 75 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2014:0414", "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "975767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975767" }, { "category": "external", "summary": "975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "1018713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018713" }, { "category": "external", "summary": "1018717", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018717" }, { "category": "external", "summary": "1018720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018720" }, { "category": "external", "summary": "1018727", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018727" }, { "category": "external", "summary": "1018736", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018736" }, { "category": "external", "summary": "1018750", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018750" }, { "category": "external", "summary": "1018785", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018785" }, { "category": "external", "summary": "1018831", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018831" }, { "category": "external", "summary": "1018972", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018972" }, { "category": "external", "summary": "1018984", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018984" }, { "category": "external", "summary": "1019108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019108" }, { "category": "external", "summary": "1019110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019110" }, { "category": "external", "summary": "1019113", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019113" }, { "category": "external", "summary": "1019115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019115" }, { "category": "external", "summary": "1019117", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019117" }, { "category": "external", "summary": "1019118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019118" }, { "category": "external", "summary": "1019123", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019123" }, { "category": "external", "summary": "1019127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019127" }, { "category": "external", "summary": "1019130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019130" }, { "category": "external", "summary": "1019131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019131" }, { "category": "external", "summary": "1019133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019133" }, { "category": "external", "summary": "1019137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019137" }, { "category": "external", "summary": "1019139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019139" }, { "category": "external", "summary": "1019145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019145" }, { "category": "external", "summary": "1019147", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019147" }, { "category": "external", "summary": "1019176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019176" }, { "category": "external", "summary": "1019691", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019691" }, { "category": "external", "summary": "1019693", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019693" }, { "category": "external", "summary": "1019697", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019697" }, { "category": "external", "summary": "1019701", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019701" }, { "category": "external", "summary": "1019702", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019702" }, { "category": "external", "summary": "1019705", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019705" }, { "category": "external", "summary": "1019706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019706" }, { "category": "external", "summary": "1019710", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019710" }, { "category": "external", "summary": "1019712", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019712" }, { "category": "external", "summary": "1019713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019713" }, { "category": "external", "summary": "1019715", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019715" }, { "category": "external", "summary": "1019716", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019716" }, { "category": "external", "summary": "1019720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019720" }, { "category": "external", "summary": "1031734", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1031734" }, { "category": "external", "summary": "1045561", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1045561" }, { "category": "external", "summary": "1051519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051519" }, { "category": "external", "summary": "1051528", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051528" }, { "category": "external", "summary": "1051699", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051699" }, { "category": "external", "summary": "1051823", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051823" }, { "category": "external", "summary": "1051911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051911" }, { "category": "external", "summary": "1051912", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051912" }, { "category": "external", "summary": "1051923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051923" }, { "category": "external", "summary": "1052915", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052915" }, { "category": "external", "summary": "1052919", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052919" }, { "category": "external", "summary": "1052942", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052942" }, { "category": "external", "summary": "1053010", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053010" }, { "category": "external", "summary": "1053066", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053066" }, { "category": "external", "summary": "1053266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053266" }, { "category": "external", "summary": "1053495", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053495" }, { "category": "external", "summary": "1053496", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053496" }, { "category": "external", "summary": "1053499", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053499" }, { "category": "external", "summary": "1053501", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053501" }, { "category": "external", "summary": "1053502", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053502" }, { "category": "external", "summary": "1053504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053504" }, { "category": "external", "summary": "1053507", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053507" }, { "category": "external", "summary": "1053508", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053508" }, { "category": "external", "summary": "1053509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053509" }, { "category": "external", "summary": "1053510", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053510" }, { "category": "external", "summary": "1053512", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053512" }, { "category": "external", "summary": "1053513", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053513" }, { "category": "external", "summary": "1053515", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053515" }, { "category": "external", "summary": "1053516", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053516" }, { "category": "external", "summary": "1053517", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053517" }, { "category": "external", "summary": "1053518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053518" }, { "category": "external", "summary": "1060907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1060907" }, { "category": "external", "summary": "1086632", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1086632" }, { "category": "external", "summary": "1086645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1086645" }, { "category": "external", "summary": "1087409", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087409" }, { "category": "external", "summary": "1087411", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087411" }, { "category": "external", "summary": "1087413", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087413" }, { "category": "external", "summary": "1087417", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087417" }, { "category": "external", "summary": "1087426", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087426" }, { "category": "external", "summary": "1087427", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087427" }, { "category": "external", "summary": "1087428", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087428" }, { "category": "external", "summary": "1087430", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087430" }, { "category": "external", "summary": "1087431", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087431" }, { "category": "external", "summary": "1087434", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087434" }, { "category": "external", "summary": "1087436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087436" }, { "category": "external", "summary": "1087439", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087439" }, { "category": "external", "summary": "1087441", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087441" }, { "category": "external", "summary": "1087442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087442" }, { "category": "external", "summary": "1087443", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087443" }, { "category": "external", "summary": "1088025", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088025" }, { "category": "external", "summary": "1088027", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088027" }, { "category": "external", "summary": "1088028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088028" }, { "category": "external", "summary": "1088030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088030" }, { "category": "external", "summary": "1088031", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088031" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0414.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-sun security update", "tracking": { "current_release_date": "2024-11-05T18:23:23+00:00", "generator": { "date": "2024-11-05T18:23:23+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2014:0414", "initial_release_date": "2014-04-17T11:30:33+00:00", "revision_history": [ { "date": "2014-04-17T11:30:33+00:00", "number": "1", "summary": "Initial version" }, { "date": "2017-12-15T14:38:49+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T18:23:23+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:6" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Desktop 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } }, { "category": "product_name", "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product": { "name": "Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras_oracle_java:5" } } } ], "category": "product_family", "name": "Oracle Java for Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "product": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "product_id": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.75-1jpp.1.el6_5?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "product_id": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.75-1jpp.1.el6_5?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.75-1jpp.1.el6_5?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.75-1jpp.1.el6_5?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "product_id": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.75-1jpp.1.el6_5?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "product_id": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.75-1jpp.1.el6_5?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.75-1jpp.1.el6_5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.75-1jpp.1.el6_5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.75-1jpp.1.el6_5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.75-1jpp.1.el6_5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.75-1jpp.1.el6_5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.75-1jpp.1.el6_5?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.75-1jpp.3.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.75-1jpp.3.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.75-1jpp.3.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.75-1jpp.3.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.75-1jpp.3.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.75-1jpp.3.el5_10?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.75-1jpp.3.el5_10?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "product_id": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.75-1jpp.3.el5_10?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "product_id": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.75-1jpp.3.el5_10?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "product_id": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.75-1jpp.3.el5_10?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.75-1jpp.3.el5_10?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "product": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "product_id": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.75-1jpp.3.el5_10?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 5", "product_id": "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Client-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 5", "product_id": "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "relates_to_product_reference": "5Server-OracleJava-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Desktop 6", "product_id": "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Client-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux HPC Node 6", "product_id": "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6ComputeNode-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Server 6", "product_id": "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Server-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64 as a component of Oracle Java for Red Hat Enterprise Linux Workstation 6", "product_id": "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "relates_to_product_reference": "6Workstation-OracleJava-6.5.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2437", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2437" }, { "category": "external", "summary": "RHBZ#975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2437", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2442", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2442" }, { "category": "external", "summary": "RHBZ#975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2445", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975124" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "RHBZ#975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2451", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975146" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: exclusive port binding (Networking, 7170730)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "RHBZ#975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2451", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2451" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: exclusive port binding (Networking, 7170730)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2461", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975126" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "RHBZ#975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2464", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975757" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2464" }, { "category": "external", "summary": "RHBZ#975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2464", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2464" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (2D)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2466", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975764" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2466" }, { "category": "external", "summary": "RHBZ#975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2466", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2466" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2468", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975761" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2466.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2468" }, { "category": "external", "summary": "RHBZ#975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2468", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2468" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" }, { "cve": "CVE-2013-3743", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975767" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u51 and 5u51 (AWT)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3743" }, { "category": "external", "summary": "RHBZ#975767", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975767" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3743", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3743" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3743", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3743" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u51 and 5u51 (AWT)" }, { "cve": "CVE-2013-3829", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.util.TimeZone does not restrict setting of default time zone (Libraries, 8001029)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3829" }, { "category": "external", "summary": "RHBZ#1019133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3829", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3829" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3829", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3829" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: java.util.TimeZone does not restrict setting of default time zone (Libraries, 8001029)" }, { "cve": "CVE-2013-4002", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019176" } ], "notes": [ { "category": "description", "text": "A resource consumption issue was found in the way Xerces-J handled XML declarations. A remote attacker could use an XML document with a specially crafted declaration using a long pseudo-attribute name that, when parsed by an application using Xerces-J, would cause that application to use an excessive amount of CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML parsing Denial of Service (JAXP, 8017298)", "title": "Vulnerability summary" }, { "category": "other", "text": "Fuse ESB Enterprise is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Fuse Product Life Cycle: https://access.redhat.com/support/policy/updates/fusesource/\n\nRed Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Server 4 and 5; Red Hat JBoss Enterprise Web Platform 5; Red Hat JBoss SOA Platform 4 and 5; and Red Hat JBoss Web Server 1 are now in Phase 3, Extended Life Support, of their respective life cycles. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware and Red Hat JBoss Operations Network Product Update and Support Policy: https://access.redhat.com/support/policy/updates/jboss_notes/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-4002" }, { "category": "external", "summary": "RHBZ#1019176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019176" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-4002", "url": "https://www.cve.org/CVERecord?id=CVE-2013-4002" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4002", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4002" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML parsing Denial of Service (JAXP, 8017298)" }, { "acknowledgments": [ { "names": [ "Arun Babu Neelicattu" ], "organization": "Red Hat Security Response Team", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2013-4578", "discovery_date": "2013-11-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1031471" } ], "notes": [ { "category": "description", "text": "jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: jarsigner does not detect unsigned bytecode injected into signed jars", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-4578" }, { "category": "external", "summary": "RHBZ#1031471", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1031471" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-4578", "url": "https://www.cve.org/CVERecord?id=CVE-2013-4578" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4578", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4578" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: jarsigner does not detect unsigned bytecode injected into signed jars" }, { "cve": "CVE-2013-5772", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018717" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u40 and earlier and Java SE 6u60 and earlier allows remote attackers to affect integrity via unknown vectors related to jhat.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient html escaping in jhat (jhat, 8011081)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5772" }, { "category": "external", "summary": "RHBZ#1018717", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018717" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5772", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5772" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5772", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5772" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient html escaping in jhat (jhat, 8011081)" }, { "cve": "CVE-2013-5774", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019147" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Inet6Address class IPv6 address processing errors (Libraries, 8015743)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5774" }, { "category": "external", "summary": "RHBZ#1019147", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019147" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5774", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5774" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5774", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5774" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Inet6Address class IPv6 address processing errors (Libraries, 8015743)" }, { "cve": "CVE-2013-5776", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019712" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5776" }, { "category": "external", "summary": "RHBZ#1019712", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019712" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5776", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5776" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5778", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018984" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image conversion out of bounds read (2D, 8014102)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5778" }, { "category": "external", "summary": "RHBZ#1018984", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018984" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5778", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5778" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5778", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5778" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: image conversion out of bounds read (2D, 8014102)" }, { "cve": "CVE-2013-5780", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018785" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: key data leak via toString() methods (Libraries, 8011071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5780" }, { "category": "external", "summary": "RHBZ#1018785", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018785" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5780", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5780" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5780", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5780" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: key data leak via toString() methods (Libraries, 8011071)" }, { "cve": "CVE-2013-5782", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019108" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect awt_getPixelByte/awt_getPixelShort/awt_setPixelByte/awt_setPixelShort image raster checks (2D, 8014093)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5782" }, { "category": "external", "summary": "RHBZ#1019108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019108" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5782", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5782" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5782", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5782" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect awt_getPixelByte/awt_getPixelShort/awt_setPixelByte/awt_setPixelShort image raster checks (2D, 8014093)" }, { "cve": "CVE-2013-5783", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JTable not properly performing certain access checks (Swing, 8013744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5783" }, { "category": "external", "summary": "RHBZ#1019137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5783", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5783" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5783", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5783" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JTable not properly performing certain access checks (Swing, 8013744)" }, { "cve": "CVE-2013-5784", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018727" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to SCRIPTING.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient InterfaceImplementor security checks (Scripting, 8017299)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5784" }, { "category": "external", "summary": "RHBZ#1018727", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018727" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5784", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5784" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5784", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5784" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient InterfaceImplementor security checks (Scripting, 8017299)" }, { "cve": "CVE-2013-5787", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019693" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5789, CVE-2013-5824, CVE-2013-5832, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5787" }, { "category": "external", "summary": "RHBZ#1019693", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019693" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5787", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5787" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5787", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5787" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5789", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019697" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5824, CVE-2013-5832, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5789" }, { "category": "external", "summary": "RHBZ#1019697", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019697" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5789", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5789" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5789", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5789" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5790", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018736" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to BEANS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient security checks (Beans, 8012071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5790" }, { "category": "external", "summary": "RHBZ#1018736", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018736" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5790", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5790" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5790", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5790" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient security checks (Beans, 8012071)" }, { "cve": "CVE-2013-5797", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018720" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and JavaFX 2.2.40 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient escaping of window title string (Javadoc, 8016675)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5797" }, { "category": "external", "summary": "RHBZ#1018720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018720" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5797", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5797" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5797", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5797" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient escaping of window title string (Javadoc, 8016675)" }, { "cve": "CVE-2013-5801", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019710" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5801" }, { "category": "external", "summary": "RHBZ#1019710", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019710" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5801", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5801" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5801", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5801" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (2D)" }, { "cve": "CVE-2013-5802", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019130" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: javax.xml.transform.TransformerFactory does not properly honor XMLConstants.FEATURE_SECURE_PROCESSING (JAXP, 8012425)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5802" }, { "category": "external", "summary": "RHBZ#1019130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019130" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5802", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5802" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5802", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5802" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: javax.xml.transform.TransformerFactory does not properly honor XMLConstants.FEATURE_SECURE_PROCESSING (JAXP, 8012425)" }, { "cve": "CVE-2013-5803", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018713" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JGSS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient checks of KDC replies (JGSS, 8014341)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5803" }, { "category": "external", "summary": "RHBZ#1018713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018713" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5803", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5803" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5803", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5803" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient checks of KDC replies (JGSS, 8014341)" }, { "cve": "CVE-2013-5804", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, and JRockit R27.7.6 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: javac does not ignore certain ignorable characters (Javadoc, 8016653)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5804" }, { "category": "external", "summary": "RHBZ#1019131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5804", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5804" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5804", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5804" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: javac does not ignore certain ignorable characters (Javadoc, 8016653)" }, { "cve": "CVE-2013-5809", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019113" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5829.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader and JPEGImageWriter missing band size checks (2D, 8013510)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5809" }, { "category": "external", "summary": "RHBZ#1019113", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019113" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5809", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5809" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5809", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5809" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JPEGImageReader and JPEGImageWriter missing band size checks (2D, 8013510)" }, { "cve": "CVE-2013-5812", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019706" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5812" }, { "category": "external", "summary": "RHBZ#1019706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019706" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5812", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5812" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5812", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5812" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5814", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019117" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMIConnection stub missing permission check (CORBA, 8011157)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5814" }, { "category": "external", "summary": "RHBZ#1019117", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019117" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5814", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5814" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5814", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5814" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RMIConnection stub missing permission check (CORBA, 8011157)" }, { "cve": "CVE-2013-5817", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: VersionHelper12 does not honor modifyThreadGroup restriction (JNDI, 8013739)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5817" }, { "category": "external", "summary": "RHBZ#1019118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5817", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5817" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5817", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5817" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: VersionHelper12 does not honor modifyThreadGroup restriction (JNDI, 8013739)" }, { "cve": "CVE-2013-5818", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019713" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5819 and CVE-2013-5831.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5818" }, { "category": "external", "summary": "RHBZ#1019713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019713" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5818", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5818" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5818", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5818" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5819", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019715" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5818 and CVE-2013-5831.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5819" }, { "category": "external", "summary": "RHBZ#1019715", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019715" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5819", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5819" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5819", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5819" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5820", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018972" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to JAX-WS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient security checks (JAXWS, 8017505)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5820" }, { "category": "external", "summary": "RHBZ#1018972", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018972" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5820", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5820" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5820", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5820" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient security checks (JAXWS, 8017505)" }, { "cve": "CVE-2013-5823", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019145" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.org.apache.xml.internal.security.utils.UnsyncByteArrayOutputStream Denial of Service (Security, 8021290)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5823" }, { "category": "external", "summary": "RHBZ#1019145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019145" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5823", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5823" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5823", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5823" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.org.apache.xml.internal.security.utils.UnsyncByteArrayOutputStream Denial of Service (Security, 8021290)" }, { "cve": "CVE-2013-5824", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019691" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5832, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5824" }, { "category": "external", "summary": "RHBZ#1019691", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019691" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5824", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5824" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5824", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5824" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5825", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML parsing Denial of Service (JAXP, 8014530)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5825" }, { "category": "external", "summary": "RHBZ#1019139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5825", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5825" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5825", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5825" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML parsing Denial of Service (JAXP, 8014530)" }, { "cve": "CVE-2013-5829", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5809.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Java2d Disposer security bypass (2D, 8017287)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5829" }, { "category": "external", "summary": "RHBZ#1019115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5829", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5829" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5829", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5829" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Java2d Disposer security bypass (2D, 8017287)" }, { "cve": "CVE-2013-5830", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: checkPackageAccess missing security check (Libraries, 8017291)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5830" }, { "category": "external", "summary": "RHBZ#1019110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5830", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5830" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5830", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5830" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: checkPackageAccess missing security check (Libraries, 8017291)" }, { "cve": "CVE-2013-5831", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019716" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5818 and CVE-2013-5819.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5831" }, { "category": "external", "summary": "RHBZ#1019716", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019716" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5831", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5831" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5831", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5831" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5832", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019702" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5824, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5832" }, { "category": "external", "summary": "RHBZ#1019702", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019702" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5832", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5832" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5832", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5832" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5840", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018831" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getDeclaringClass() information leak (Libraries, 8014349)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5840" }, { "category": "external", "summary": "RHBZ#1018831", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018831" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5840", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5840" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5840", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5840" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getDeclaringClass() information leak (Libraries, 8014349)" }, { "cve": "CVE-2013-5842", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019123" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5850.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectInputStream/ObjectOutputStream missing checks (Libraries, 8014987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5842" }, { "category": "external", "summary": "RHBZ#1019123", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019123" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5842", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5842" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5842", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5842" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ObjectInputStream/ObjectOutputStream missing checks (Libraries, 8014987)" }, { "cve": "CVE-2013-5843", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019701" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JavaFX 2.2.40 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5843" }, { "category": "external", "summary": "RHBZ#1019701", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019701" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5843", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5843" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5843", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5843" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (2D)" }, { "cve": "CVE-2013-5848", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019720" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and JavaFX 2.2.40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5848" }, { "category": "external", "summary": "RHBZ#1019720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019720" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5848", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5848" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5848", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5848" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5849", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018750" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient DataFlavor security checks (AWT, 8012277)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5849" }, { "category": "external", "summary": "RHBZ#1018750", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018750" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5849", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5849" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5849", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5849" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient DataFlavor security checks (AWT, 8012277)" }, { "cve": "CVE-2013-5850", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5842.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing CORBA security checks (Libraries, 8017196)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5850" }, { "category": "external", "summary": "RHBZ#1019127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5850", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5850" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5850", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5850" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Missing CORBA security checks (Libraries, 8017196)" }, { "cve": "CVE-2013-5852", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019705" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5824, and CVE-2013-5832.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5852" }, { "category": "external", "summary": "RHBZ#1019705", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019705" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5852", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5852" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5852", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5852" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5878", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051823" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the Security component does not properly handle null XML namespace (xmlns) attributes during XML document canonicalization, which allows attackers to escape the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: null xmlns handling issue (Security, 8025026)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5878" }, { "category": "external", "summary": "RHBZ#1051823", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051823" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5878", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5878" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5878", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5878" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: null xmlns handling issue (Security, 8025026)" }, { "cve": "CVE-2013-5884", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an incorrect check for code permissions by CORBA stub factories.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient security checks in CORBA stub factories (CORBA, 8026193)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5884" }, { "category": "external", "summary": "RHBZ#1051911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5884", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5884" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5884", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5884" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient security checks in CORBA stub factories (CORBA, 8026193)" }, { "cve": "CVE-2013-5887", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053515" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5887" }, { "category": "external", "summary": "RHBZ#1053515", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053515" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5887", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5887" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5887", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5887" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2013-5888", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053517" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, when running with GNOME, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5888" }, { "category": "external", "summary": "RHBZ#1053517", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053517" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5888", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5888" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5888", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5888" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2013-5889", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053499" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5902, CVE-2014-0410, CVE-2014-0415, CVE-2014-0418, and CVE-2014-0424.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5889" }, { "category": "external", "summary": "RHBZ#1053499", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053499" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5889", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5889" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5889", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5889" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2013-5896", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053266" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that com.sun.corba.se and its sub-packages are not included on the restricted package list.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.corba.se. should be restricted package (CORBA, 8025022)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5896" }, { "category": "external", "summary": "RHBZ#1053266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053266" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5896", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5896" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5896", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5896" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "category": "workaround", "details": "Applications running with a security manager that make direct use of classes\nin these JDK internal packages, need to adjust their security policy to\ngrant access. See Java Security Policy Files documentation.", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.corba.se. should be restricted package (CORBA, 8025022)" }, { "cve": "CVE-2013-5898", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053518" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2014-0375 and CVE-2014-0403.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5898" }, { "category": "external", "summary": "RHBZ#1053518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053518" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5898", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5898" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5898", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5898" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2013-5899", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053516" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5899" }, { "category": "external", "summary": "RHBZ#1053516", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053516" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5899", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5899" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5899", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5899" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2013-5902", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053512" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5889, CVE-2014-0410, CVE-2014-0415, CVE-2014-0418, and CVE-2014-0424.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5902" }, { "category": "external", "summary": "RHBZ#1053512", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053512" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5902", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5902" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5902", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5902" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2013-5905", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053509" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install, a different vulnerability than CVE-2013-5906.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5905" }, { "category": "external", "summary": "RHBZ#1053509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053509" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5905", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5905" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5905", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5905" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (Install)" }, { "cve": "CVE-2013-5906", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053510" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install, a different vulnerability than CVE-2013-5905.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5906" }, { "category": "external", "summary": "RHBZ#1053510", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053510" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5906", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5906" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5906", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5906" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (Install)" }, { "cve": "CVE-2013-5907", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1052915" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is due to incorrect input validation in LookupProcessor.cpp in the ICU Layout Engine, which allows attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted font file.", "title": "Vulnerability description" }, { "category": "summary", "text": "ICU: Layout Engine LookupProcessor insufficient input checks (JDK 2D, 8025034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5907" }, { "category": "external", "summary": "RHBZ#1052915", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052915" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5907", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5907" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5907", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5907" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "ICU: Layout Engine LookupProcessor insufficient input checks (JDK 2D, 8025034)" }, { "cve": "CVE-2013-5910", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1052942" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, Java SE Embedded 7u45, and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Security. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that CanonicalizerBase.java in the XML canonicalizer allows untrusted code to access mutable byte arrays.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML canonicalizer mutable strings passed to untrusted code (Security, 8026417)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5910" }, { "category": "external", "summary": "RHBZ#1052942", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052942" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5910", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5910" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5910", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5910" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML canonicalizer mutable strings passed to untrusted code (Security, 8026417)" }, { "cve": "CVE-2013-6629", "cwe": { "id": "CWE-456", "name": "Missing Initialization of a Variable" }, "discovery_date": "2013-11-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1031734" } ], "notes": [ { "category": "description", "text": "The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.", "title": "Vulnerability description" }, { "category": "summary", "text": "libjpeg: information leak (read of uninitialized memory)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-6629" }, { "category": "external", "summary": "RHBZ#1031734", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1031734" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-6629", "url": "https://www.cve.org/CVERecord?id=CVE-2013-6629" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-6629", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-6629" } ], "release_date": "2013-11-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libjpeg: information leak (read of uninitialized memory)" }, { "cve": "CVE-2013-6954", "discovery_date": "2013-12-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1045561" } ], "notes": [ { "category": "description", "text": "The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.", "title": "Vulnerability description" }, { "category": "summary", "text": "libpng: unhandled zero-length PLTE chunk or NULL palette", "title": "Vulnerability summary" }, { "category": "other", "text": "Not Vulnerable. This issue does not affect the version of libpng as shipped with Red Hat Enterprise Linux 5 and 6.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-6954" }, { "category": "external", "summary": "RHBZ#1045561", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1045561" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-6954", "url": "https://www.cve.org/CVERecord?id=CVE-2013-6954" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-6954", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-6954" } ], "release_date": "2013-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "libpng: unhandled zero-length PLTE chunk or NULL palette" }, { "cve": "CVE-2014-0368", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1052919" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and Java SE Embedded 7u45, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to incorrect permission checks when listening on a socket, which allows attackers to escape the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Socket checkListen checks (Networking, 8011786)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0368" }, { "category": "external", "summary": "RHBZ#1052919", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052919" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0368", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0368" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0368", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0368" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Socket checkListen checks (Networking, 8011786)" }, { "cve": "CVE-2014-0373", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051699" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to throwing of an incorrect exception when SnmpStatusException should have been used in the SNMP implementation, which allows attackers to escape the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SnmpStatusException handling issues (Serviceability, 7068126)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0373" }, { "category": "external", "summary": "RHBZ#1051699", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051699" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0373", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0373" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0373", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0373" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: SnmpStatusException handling issues (Serviceability, 7068126)" }, { "cve": "CVE-2014-0375", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053508" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5898 and CVE-2014-0403.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0375" }, { "category": "external", "summary": "RHBZ#1053508", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053508" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0375", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0375" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0375", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0375" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0376", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051923" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAXP. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an improper check for \"code permissions when creating document builder factories.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: document builder missing security checks (JAXP, 8027201, 8025018)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0376" }, { "category": "external", "summary": "RHBZ#1051923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051923" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0376", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0376" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0376", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0376" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: document builder missing security checks (JAXP, 8027201, 8025018)" }, { "cve": "CVE-2014-0387", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053502" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and Java SE 7u45, when running on Firefox, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0387" }, { "category": "external", "summary": "RHBZ#1053502", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053502" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0387", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0387" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0387", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0387" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0403", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053507" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5898 and CVE-2014-0375.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0403" }, { "category": "external", "summary": "RHBZ#1053507", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053507" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0403", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0403" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0403", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0403" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0410", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053495" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5889, CVE-2013-5902, CVE-2014-0415, CVE-2014-0418, and CVE-2014-0424.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0410" }, { "category": "external", "summary": "RHBZ#1053495", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053495" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0410", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0410" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0410", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0410" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0411", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053010" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information about encryption keys via a timing discrepancy during the TLS/SSL handshake.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: TLS/SSL handshake timing issues (JSSE, 8023069)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0411" }, { "category": "external", "summary": "RHBZ#1053010", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053010" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0411", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0411" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0411", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0411" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: TLS/SSL handshake timing issues (JSSE, 8023069)" }, { "cve": "CVE-2014-0415", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053496" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5889, CVE-2013-5902, CVE-2014-0410, CVE-2014-0418, and CVE-2014-0424.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0415" }, { "category": "external", "summary": "RHBZ#1053496", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053496" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0415", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0415" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0415", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0415" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0416", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051912" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect integrity via vectors related to JAAS. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to how principals are set for the Subject class, which allows attackers to escape the sandbox using deserialization of a crafted Subject instance.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure subject principals set handling (JAAS, 8024306)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0416" }, { "category": "external", "summary": "RHBZ#1051912", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051912" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0416", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0416" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0416", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0416" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insecure subject principals set handling (JAAS, 8024306)" }, { "cve": "CVE-2014-0417", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053501" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JavaFX 2.2.45; and Java SE Embedded 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0417" }, { "category": "external", "summary": "RHBZ#1053501", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053501" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0417", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0417" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0417", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0417" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (2D)" }, { "cve": "CVE-2014-0418", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053513" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5889, CVE-2013-5902, CVE-2014-0410, CVE-2014-0415, and CVE-2014-0424.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0418" }, { "category": "external", "summary": "RHBZ#1053513", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053513" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0418", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0418" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0418", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0418" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0422", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051528" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to missing package access checks in the Naming / JNDI component, which allows attackers to escape the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient package access checks in the Naming component (JNDI, 8025758)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0422" }, { "category": "external", "summary": "RHBZ#1051528", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051528" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0422", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0422" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0422", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0422" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient package access checks in the Naming component (JNDI, 8025758)" }, { "cve": "CVE-2014-0423", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053066" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JRockit R27.7.7 and R28.2.9; Java SE Embedded 7u45; and OpenJDK 7 allows remote authenticated users to affect confidentiality and availability via unknown vectors related to Beans. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that this issue is an XML External Entity (XXE) vulnerability in DocumentHandler.java, related to Beans decoding.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XXE issue in decoder (Beans, 8023245)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0423" }, { "category": "external", "summary": "RHBZ#1053066", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053066" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0423", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0423" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 5.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XXE issue in decoder (Beans, 8023245)" }, { "cve": "CVE-2014-0424", "discovery_date": "2014-01-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1053504" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u65 and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5889, CVE-2013-5902, CVE-2014-0410, CVE-2014-0415, and CVE-2014-0418.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0424" }, { "category": "external", "summary": "RHBZ#1053504", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053504" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixJAVA" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)" }, { "cve": "CVE-2014-0428", "discovery_date": "2014-01-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1051519" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to \"insufficient security checks in IIOP streams,\" which allows attackers to escape the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient security checks in IIOP streams (CORBA, 8025767)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0428" }, { "category": "external", "summary": "RHBZ#1051519", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1051519" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html" } ], "release_date": "2014-01-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient security checks in IIOP streams (CORBA, 8025767)" }, { "cve": "CVE-2014-0429", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087409" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect mlib/raster image validation (2D, 8027841)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0429" }, { "category": "external", "summary": "RHBZ#1087409", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087409" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0429", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0429" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect mlib/raster image validation (2D, 8027841)" }, { "cve": "CVE-2014-0446", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087439" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Protect logger handlers (Libraries, 8029740)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0446" }, { "category": "external", "summary": "RHBZ#1087439", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087439" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0446", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Protect logger handlers (Libraries, 8029740)" }, { "cve": "CVE-2014-0449", "discovery_date": "2014-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1088028" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0449" }, { "category": "external", "summary": "RHBZ#1088028", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088028" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0449", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0449" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)" }, { "cve": "CVE-2014-0451", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087428" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-2412.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AWT incorrect FlavorMap seperation (AWT, 8026797)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0451" }, { "category": "external", "summary": "RHBZ#1087428", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087428" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0451", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0451" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0451", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0451" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: AWT incorrect FlavorMap seperation (AWT, 8026797)" }, { "cve": "CVE-2014-0452", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087436" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0458 and CVE-2014-2423.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect caching of data initialized via TCCL (JAXWS, 8026801)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0452" }, { "category": "external", "summary": "RHBZ#1087436", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087436" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0452", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: incorrect caching of data initialized via TCCL (JAXWS, 8026801)" }, { "cve": "CVE-2014-0453", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1086645" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RSA unpadding timing issues (Security, 8027766)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0453" }, { "category": "external", "summary": "RHBZ#1086645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1086645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0453", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RSA unpadding timing issues (Security, 8027766)" }, { "cve": "CVE-2014-0456", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087413" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: System.arraycopy() element race condition (Hotspot, 8029858)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0456" }, { "category": "external", "summary": "RHBZ#1087413", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087413" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0456", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: System.arraycopy() element race condition (Hotspot, 8029858)" }, { "cve": "CVE-2014-0457", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087411" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ServiceLoader Exception handling security bypass (Libraries, 8031394)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0457" }, { "category": "external", "summary": "RHBZ#1087411", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087411" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0457", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ServiceLoader Exception handling security bypass (Libraries, 8031394)" }, { "cve": "CVE-2014-0458", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087430" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0458" }, { "category": "external", "summary": "RHBZ#1087430", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087430" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0458", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)" }, { "cve": "CVE-2014-0460", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087442" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via vectors related to JNDI.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing randomization of JNDI DNS client query IDs (JNDI, 8030731)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0460" }, { "category": "external", "summary": "RHBZ#1087442", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087442" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0460", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: missing randomization of JNDI DNS client query IDs (JNDI, 8030731)" }, { "cve": "CVE-2014-0461", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087426" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better ScriptEngineManager ScriptEngine management (Libraries, 8036794)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-0461" }, { "category": "external", "summary": "RHBZ#1087426", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087426" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-0461", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Better ScriptEngineManager ScriptEngine management (Libraries, 8036794)" }, { "cve": "CVE-2014-1876", "cwe": { "id": "CWE-377", "name": "Insecure Temporary File" }, "discovery_date": "2014-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1060907" } ], "notes": [ { "category": "description", "text": "The unpacker::redirect_stdio function in unpack.cpp in unpack200 in OpenJDK 6, 7, and 8; Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 does not securely create temporary files when a log file cannot be opened, which allows local users to overwrite arbitrary files via a symlink attack on /tmp/unpack.log.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insecure temporary file use in unpack200 (Libraries, 8033618)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-1876" }, { "category": "external", "summary": "RHBZ#1060907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1060907" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-1876", "url": "https://www.cve.org/CVERecord?id=CVE-2014-1876" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-1876", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-1876" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-02-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insecure temporary file use in unpack200 (Libraries, 8033618)" }, { "acknowledgments": [ { "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2014-2398", "discovery_date": "2013-10-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1086632" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and JRockit R27.8.1 and R28.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient escaping of window title string (Javadoc, 8026736)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2398" }, { "category": "external", "summary": "RHBZ#1086632", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1086632" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2398", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2398" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2398", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2398" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient escaping of window title string (Javadoc, 8026736)" }, { "cve": "CVE-2014-2401", "discovery_date": "2014-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1088030" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 5.0u75, 6u75, 7u55 and 8u5 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2401" }, { "category": "external", "summary": "RHBZ#1088030", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088030" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2401", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2401" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2401", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2401" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 5.0u75, 6u75, 7u55 and 8u5 (2D)" }, { "cve": "CVE-2014-2403", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087443" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JAXP CharInfo file access restriction (JAXP, 8029282)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2403" }, { "category": "external", "summary": "RHBZ#1087443", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087443" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2403", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2403" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2403", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2403" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JAXP CharInfo file access restriction (JAXP, 8029282)" }, { "cve": "CVE-2014-2409", "discovery_date": "2014-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1088027" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2409" }, { "category": "external", "summary": "RHBZ#1088027", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088027" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2409", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2409" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2409", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2409" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)" }, { "cve": "CVE-2014-2412", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087427" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, SE 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT, a different vulnerability than CVE-2014-0451.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AWT thread context handling (AWT, 8025010)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2412" }, { "category": "external", "summary": "RHBZ#1087427", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087427" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: AWT thread context handling (AWT, 8025010)" }, { "cve": "CVE-2014-2414", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087431" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXB.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect caching of data initialized via TCCL (JAXB, 8025030)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2414" }, { "category": "external", "summary": "RHBZ#1087431", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087431" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2414", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2414" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2414", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2414" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: incorrect caching of data initialized via TCCL (JAXB, 8025030)" }, { "cve": "CVE-2014-2420", "discovery_date": "2014-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1088031" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2420" }, { "category": "external", "summary": "RHBZ#1088031", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088031" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2420", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2420" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)" }, { "cve": "CVE-2014-2421", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087417" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEG decoder input stream handling (2D, 8029854)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2421" }, { "category": "external", "summary": "RHBZ#1087417", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087417" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2421", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2421" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2421", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2421" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JPEG decoder input stream handling (2D, 8029854)" }, { "cve": "CVE-2014-2423", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087434" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-0458.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: incorrect caching of data initialized via TCCL (JAXWS, 8026188)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2423" }, { "category": "external", "summary": "RHBZ#1087434", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087434" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2423", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2423" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: incorrect caching of data initialized via TCCL (JAXWS, 8026188)" }, { "cve": "CVE-2014-2427", "discovery_date": "2014-04-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1087441" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: remove insecure Java Sound provider caching (Sound, 8026163)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2427" }, { "category": "external", "summary": "RHBZ#1087441", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1087441" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2427", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: remove insecure Java Sound provider caching (Sound, 8026163)" }, { "cve": "CVE-2014-2428", "discovery_date": "2014-04-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1088025" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2014-2428" }, { "category": "external", "summary": "RHBZ#1088025", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088025" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2014-2428", "url": "https://www.cve.org/CVERecord?id=CVE-2014-2428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA", "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html#AppendixJAVA" } ], "release_date": "2014-04-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2014-04-17T11:30:33+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2014:0414" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Client-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10.x86_64", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.i586", "5Server-OracleJava-5.10.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Client-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6ComputeNode-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Server-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5.x86_64", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.i686", "6Workstation-OracleJava-6.5.Z:java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u75, 7u55 and 8u5 (Deployment)" } ] }
rhsa-2013_1014
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-openjdk packages that fix various security issues are\nnow available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nMultiple flaws were discovered in the ImagingLib and the image attribute,\nchannel, layout and raster processing in the 2D component. An untrusted\nJava application or applet could possibly use these flaws to trigger Java\nVirtual Machine memory corruption. (CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-2463, CVE-2013-2465, CVE-2013-2469)\n\nInteger overflow flaws were found in the way AWT processed certain input.\nAn attacker could use these flaws to execute arbitrary code with the\nprivileges of the user running an untrusted Java applet or application.\n(CVE-2013-2459)\n\nMultiple improper permission check issues were discovered in the Sound and\nJMX components in OpenJDK. An untrusted Java application or applet could\nuse these flaws to bypass Java sandbox restrictions. (CVE-2013-2448,\nCVE-2013-2457, CVE-2013-2453)\n\nMultiple flaws in the Serialization, Networking, Libraries and CORBA\ncomponents can be exploited by an untrusted Java application or applet to\ngain access to potentially sensitive information. (CVE-2013-2456,\nCVE-2013-2447, CVE-2013-2455, CVE-2013-2452, CVE-2013-2443, CVE-2013-2446)\n\nIt was discovered that the Hotspot component did not properly handle\nout-of-memory errors. An untrusted Java application or applet could\npossibly use these flaws to terminate the Java Virtual Machine.\n(CVE-2013-2445)\n\nIt was discovered that the AWT component did not properly manage certain\nresources and that the ObjectStreamClass of the Serialization component\ndid not properly handle circular references. An untrusted Java application\nor applet could possibly use these flaws to cause a denial of service.\n(CVE-2013-2444, CVE-2013-2450)\n\nIt was discovered that the Libraries component contained certain errors\nrelated to XML security and the class loader. A remote attacker could\npossibly exploit these flaws to bypass intended security mechanisms or\ndisclose potentially sensitive information and cause a denial of service.\n(CVE-2013-2407, CVE-2013-2461)\n\nIt was discovered that JConsole did not properly inform the user when\nestablishing an SSL connection failed. An attacker could exploit this flaw\nto gain access to potentially sensitive information. (CVE-2013-2412)\n\nIt was found that documentation generated by Javadoc was vulnerable to a\nframe injection attack. If such documentation was accessible over a\nnetwork, and a remote attacker could trick a user into visiting a\nspecially-crafted URL, it would lead to arbitrary web content being\ndisplayed next to the documentation. This could be used to perform a\nphishing attack by providing frame content that spoofed a login form on\nthe site hosting the vulnerable documentation. (CVE-2013-1571)\n\nIt was discovered that the 2D component created shared memory segments with\ninsecure permissions. A local attacker could use this flaw to read or write\nto the shared memory segment. (CVE-2013-1500)\n\nRed Hat would like to thank US-CERT for reporting CVE-2013-1571, and Tim\nBrown for reporting CVE-2013-1500. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:1014", "url": "https://access.redhat.com/errata/RHSA-2013:1014" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_1014.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-openjdk security update", "tracking": { "current_release_date": "2024-11-05T18:08:31+00:00", "generator": { "date": "2024-11-05T18:08:31+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2013:1014", "initial_release_date": "2013-07-03T17:04:00+00:00", "revision_history": [ { "date": "2013-07-03T17:04:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-07-03T17:08:42+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T18:08:31+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.41.1.11.11.90.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.41.1.11.11.90.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.41.1.11.11.90.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.41.1.11.11.90.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.41.1.11.11.90.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.41.1.11.11.90.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.41.1.11.11.90.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.41.1.11.11.90.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.41.1.11.11.90.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.41.1.11.11.90.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.41.1.11.11.90.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.41.1.11.11.90.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.62.1.11.11.90.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.62.1.11.11.90.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.62.1.11.11.90.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.62.1.11.11.90.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.62.1.11.11.90.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.62.1.11.11.90.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.41.1.11.11.90.el5_9?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.62.1.11.11.90.el6_4?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.62.1.11.11.90.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.62.1.11.11.90.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.62.1.11.11.90.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.62.1.11.11.90.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.62.1.11.11.90.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.62.1.11.11.90.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Client-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Server-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "relates_to_product_reference": "6Workstation-optional-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "relates_to_product_reference": "6Workstation-optional-6.4.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2445", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975124" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "RHBZ#975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2461", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975126" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "RHBZ#975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-07-03T17:04:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1014" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.41.1.11.11.90.el5_9.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Client-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Client-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6ComputeNode-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Server-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Server-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.src", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.i686", "6Workstation-optional-6.4.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.62.1.11.11.90.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" } ] }
rhsa-2013_0963
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412,\nCVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445,\nCVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450,\nCVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455,\nCVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460,\nCVE-2013-2461, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,\nCVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-3744)\n\nRed Hat would like to thank Tim Brown for reporting CVE-2013-1500, and\nUS-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571.\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 25 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0963", "url": "https://access.redhat.com/errata/RHSA-2013:0963" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "975769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975769" }, { "category": "external", "summary": "975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "975774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975774" }, { "category": "external", "summary": "975775", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975775" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0963.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-05T18:08:12+00:00", "generator": { "date": "2024-11-05T18:08:12+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2013:0963", "initial_release_date": "2013-06-20T14:42:00+00:00", "revision_history": [ { "date": "2013-06-20T14:42:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-11-13T11:09:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T18:08:12+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2400", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975774" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-3744.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2400" }, { "category": "external", "summary": "RHBZ#975774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975774" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2400", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2400" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2400", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2400" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2437", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2437" }, { "category": "external", "summary": "RHBZ#975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2437", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2442", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2442" }, { "category": "external", "summary": "RHBZ#975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2445", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975124" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "RHBZ#975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2449", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975145" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2449" }, { "category": "external", "summary": "RHBZ#975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2451", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975146" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: exclusive port binding (Networking, 7170730)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "RHBZ#975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2451", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2451" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: exclusive port binding (Networking, 7170730)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2458", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975130" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Method handles (Libraries, 8009424)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2458" }, { "category": "external", "summary": "RHBZ#975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2458", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Method handles (Libraries, 8009424)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2460", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975122" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2460" }, { "category": "external", "summary": "RHBZ#975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2460", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)" }, { "cve": "CVE-2013-2461", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975126" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "RHBZ#975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)" }, { "cve": "CVE-2013-2462", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2462" }, { "category": "external", "summary": "RHBZ#975769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2462", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2462" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2462", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2462" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2464", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975757" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2464" }, { "category": "external", "summary": "RHBZ#975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2464", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2464" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (2D)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2466", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975764" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2466" }, { "category": "external", "summary": "RHBZ#975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2466", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2466" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2468", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975761" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2466.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2468" }, { "category": "external", "summary": "RHBZ#975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2468", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2468" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" }, { "cve": "CVE-2013-3744", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975775" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3744" }, { "category": "external", "summary": "RHBZ#975775", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975775" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3744", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3744" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3744", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3744" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" } ] }
ghsa-xp47-mpxp-9h7v
Vulnerability from github
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a "Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm."
{ "affected": [], "aliases": [ "CVE-2013-2461" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2013-06-18T22:55:00Z", "severity": "HIGH" }, "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "id": "GHSA-xp47-mpxp-9h7v", "modified": "2022-05-14T00:03:29Z", "published": "2022-05-14T00:03:28Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2014:0414" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16887" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19565" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19582" }, { "type": "WEB", "url": "http://advisories.mageia.org/MGASA-2013-0185.html" }, { "type": "WEB", "url": "http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/abe9ea5a50d2" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=137545505800971\u0026w=2" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=137545592101387\u0026w=2" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0963.html" }, { "type": "WEB", "url": "http://seclists.org/fulldisclosure/2014/Dec/23" }, { "type": "WEB", "url": "http://secunia.com/advisories/54154" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:183" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/60645" }, { "type": "WEB", "url": "http://www.us-cert.gov/ncas/alerts/TA13-169A" }, { "type": "WEB", "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html" } ], "schema_version": "1.4.0", "severity": [] }
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.